- Description
- Insecure Storage of Sensitive Information vulnerability in ABB My Control System (on-premise) allows an attacker who successfully exploited this vulnerability to gain access to the secure application data or take control of the application. Of the services that make up the My Control System (on-premise) application, the following ones are affected by this vulnerability: User Interface System Monitoring1 Asset Inventory This issue affects My Control System (on-premise): from 5.0;0 through 5.13.
- Source
- cybersecurity@ch.abb.com
- NVD status
- Modified
CVSS 3.1
- Type
- Primary
- Base score
- 9.8
- Impact score
- 5.9
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
- Severity
- CRITICAL
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:abb:my_control_system:*:*:*:*:on-premise:*:*:*",
"vulnerable": true,
"matchCriteriaId": "AD49BB9B-889A-4DB5-82F8-9B886E912338",
"versionEndIncluding": "5.13",
"versionStartIncluding": "5.0"
}
],
"operator": "OR"
}
]
}
]