CVE-2018-18995
First published: Thu Jan 03 2019(Updated: )
Pluto Safety PLC Gateway Ethernet devices ABB GATE-E1 and GATE-E2 all versions do not allow authentication to be configured on administrative telnet or web interfaces, which could enable various effects vectors, including conducting device resets, reading or modifying registers, and changing configuration settings such as IP addresses.
Credit: ics-cert@hq.dhs.gov
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Abb Gate-e1 Firmware | ||
| ABB GATE-E1 | ||
| Abb Gate-e2 Firmware | ||
| Abb Gate-e2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-index
- agent/references
- agent/severity
- agent/weakness
- agent/author
- agent/type
- agent/event
- agent/description
- agent/last-modified-date
- agent/first-publish-date
- agent/softwarecombine
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/abb
- canonical/abb gate-e1 firmware
- canonical/abb gate-e1
- canonical/abb gate-e2 firmware
- canonical/abb gate-e2