CVE-2021-26845 - Information Exposure vulnerability in Hitachi ABB Power Grids eSOMS allows unauthorized user to gain

CVE-2021-26845

Summary

Information Exposure vulnerability in Hitachi ABB Power Grids eSOMS allows unauthorized user to gain access to report data if the URL used to access the report is discovered. This issue affects: Hitachi ABB Power Grids eSOMS 6.0 versions prior to 6.0.4.2.2; 6.1 versions prior to 6.1.4; 6.3 versions prior to 6.3.

References

https://search.abb.com/library/Download.aspx?DocumentID=9AKK107991A8942&LanguageCode=en&DocumentPartId=&Action=Launch

Vulnerable Configurations

cpe:2.3:a:hitachienergy:esoms:*:*:*:*:*:*:*:*
cpe:2.3:a:hitachienergy:esoms:*:*:*:*:*:*:*:*

CVSS

Base:	5.0 (as of 16-05-2023 - 20:21)
Impact:
Exploitability:

CWE

CWE-863

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	NONE	NONE

cvss-vector via4

AV:N/AC:L/Au:N/C:P/I:N/A:N

Last major update

16-05-2023 - 20:21

Published

14-06-2021 - 22:15

Last modified

16-05-2023 - 20:21