CVE-2019-19105: ABB/Busch-Jaeger Telephone Gateway TG/S 3.2 Plaintext storing of credentials
First published: Wed Apr 22 2020(Updated: )
The backup function in ABB Telephone Gateway TG/S 3.2 and Busch-Jaeger 6186/11 Telefon-Gateway saves the current settings and configuration of the application, including credentials of existing user accounts and other configuration's credentials in plaintext.
Credit: cybersecurity@ch.abb.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Abb Tg\/s3.2 Firmware | ||
| Abb Tg\/s3.2 | ||
| Busch-jaeger 6186\/11 Firmware | ||
| Busch-jaeger 6186\/11 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this issue?
The vulnerability ID for this issue is CVE-2019-19105.
What is the severity of CVE-2019-19105?
The severity of CVE-2019-19105 is medium.
What software is affected by CVE-2019-19105?
ABB Telephone Gateway TG/S 3.2 firmware and Busch-Jaeger 6186/11 Firmware are affected by CVE-2019-19105.
How does CVE-2019-19105 impact the affected software?
CVE-2019-19105 allows an attacker to access credentials of existing user accounts and other configuration's credentials in plaintext.
Is there a fix available for CVE-2019-19105?
Please refer to the vendor's website for the latest patches and updates to address CVE-2019-19105.
- collector/nvd-index
- agent/weakness
- agent/softwarecombine
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/severity
- agent/title
- agent/last-modified-date
- agent/author
- agent/tags
- agent/first-publish-date
- agent/description
- agent/event
- vendor/abb
- canonical/abb tg\/s3.2 firmware
- canonical/abb tg\/s3.2
- vendor/busch-jaeger
- canonical/busch-jaeger 6186\/11 firmware
- canonical/busch-jaeger 6186\/11