Home / Early Warning / Vulnerabilidades / CVE-2019-18253

CVE-2019-18253

Type: 
Path Traversal
Severity: 
High
Publication date: 
11/27/2019
Last modified: 
12/17/2019
Description
An attacker could use specially crafted paths in a specific request to read or delete files from Relion 670 Series (versions 1p1r26, 1.2.3.17, 2.0.0.10, RES670 2.0.0.4, 2.1.0.1, and prior) outside the intended directory.
Impact
Access Vector: Through network
Access Complexity: Low
Authentication: Not required to exploit
Impact Type: Partially affects on system integrity + Partially affects on system confidentiality + Partially affects on system availability
Vulnerable software and versions
  • cpe:2.3:o:abb:relion_670_firmware:*:*:*:*:*:*:*:*
  • cpe:2.3:h:abb:relion_670:-:*:*:*:*:*:*:*
To consult the complete list of products and versions see this page
References to Advisories, Solutions, and Tools
Explanation of fields