Vulnerability Description
An Information Exposure issue was discovered in ABB netCADOPS Web Application Version 3.4 and prior, netCADOPS Web Application Version 7.1 and prior, netCADOPS Web Application Version 7.2x and prior, netCADOPS Web Application Version 8.0 and prior, and netCADOPS Web Application Version 8.1 and prior. A vulnerability exists in the password entry section of netCADOPS Web Application that may expose critical database information.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Abb | Netcadops | >= 3.0, <= 3.4 |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/103089Third Party AdvisoryVDB Entry
- https://ics-cert.us-cert.gov/advisories/ICSA-18-051-01Third Party AdvisoryUS Government Resource
- http://www.securityfocus.com/bid/103089Third Party AdvisoryVDB Entry
- https://ics-cert.us-cert.gov/advisories/ICSA-18-051-01Third Party AdvisoryUS Government Resource
FAQ
What is CVE-2018-5477?
CVE-2018-5477 is a vulnerability with a CVSS score of 5.8 (MEDIUM). An Information Exposure issue was discovered in ABB netCADOPS Web Application Version 3.4 and prior, netCADOPS Web Application Version 7.1 and prior, netCADOPS Web Application Version 7.2x and prior, ...
How severe is CVE-2018-5477?
CVE-2018-5477 has been rated MEDIUM with a CVSS base score of 5.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2018-5477?
Check the references section above for vendor advisories and patch information. Affected products include: Abb Netcadops.