For ABB eSOMS versions 4.0 to 6.0.2, the HTTPOnly flag is not set. This can allow Javascript to access the cookie contents, which in turn might enable Cross Site Scripting.
References
Link | Resource |
---|---|
https://search.abb.com/library/Download.aspx?DocumentID=9AKK107492A9964&LanguageCode=en&DocumentPartId=&Action=Launch | Vendor Advisory |
Configurations
History
16 May 2023, 20:21
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:hitachienergy:esoms:*:*:*:*:*:*:*:* | |
First Time |
Hitachienergy
Hitachienergy esoms |
Information
Published : 2020-04-02 20:15
Updated : 2023-12-10 13:27
NVD link : CVE-2019-19003
Mitre link : CVE-2019-19003
CVE.ORG link : CVE-2019-19003
JSON object : View
Products Affected
hitachienergy
- esoms