Search

Find a vulnerability

Search criteria

    3 vulnerabilities found for netcadops by abb

    VAR-201802-0936

    Vulnerability from variot - Updated: 2024-11-23 23:08

    An Information Exposure issue was discovered in ABB netCADOPS Web Application Version 3.4 and prior, netCADOPS Web Application Version 7.1 and prior, netCADOPS Web Application Version 7.2x and prior, netCADOPS Web Application Version 8.0 and prior, and netCADOPS Web Application Version 8.1 and prior. A vulnerability exists in the password entry section of netCADOPS Web Application that may expose critical database information. Attackers can exploit this issue to obtain sensitive information that may aid in launching further attacks

    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-201802-0936",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "netcadops",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "abb",
            "version": "7.1"
          },
          {
            "model": "netcadops",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "abb",
            "version": "8.1"
          },
          {
            "model": "netcadops",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "abb",
            "version": "8.0"
          },
          {
            "model": "netcadops",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "abb",
            "version": "7.2.10"
          },
          {
            "model": "netcadops",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "abb",
            "version": "3.0"
          },
          {
            "model": "netcadops",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "abb",
            "version": "7.2.0"
          },
          {
            "model": "netcadops",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "abb",
            "version": "3.4"
          },
          {
            "model": "netcadops web application",
            "scope": "eq",
            "trust": 0.9,
            "vendor": "abb",
            "version": "8.1"
          },
          {
            "model": "netcadops web application",
            "scope": "eq",
            "trust": 0.9,
            "vendor": "abb",
            "version": "8.0"
          },
          {
            "model": "netcadops web application",
            "scope": "eq",
            "trust": 0.9,
            "vendor": "abb",
            "version": "7.20"
          },
          {
            "model": "netcadops web application",
            "scope": "eq",
            "trust": 0.9,
            "vendor": "abb",
            "version": "7.1"
          },
          {
            "model": "netcadops web application",
            "scope": "eq",
            "trust": 0.9,
            "vendor": "abb",
            "version": "3.4"
          },
          {
            "model": "netcadops",
            "scope": null,
            "trust": 0.8,
            "vendor": "abb",
            "version": null
          },
          {
            "model": null,
            "scope": "eq",
            "trust": 0.4,
            "vendor": "netcadops",
            "version": "*"
          },
          {
            "model": "netcadops web application",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "abb",
            "version": "8.0.20"
          },
          {
            "model": "netcadops web application",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "abb",
            "version": "7.2.10"
          },
          {
            "model": "netcadops web application",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "abb",
            "version": "8.1.7.1"
          },
          {
            "model": "netcadops web application",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "abb",
            "version": "7.1.16.1"
          },
          {
            "model": "netcadops web application",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "abb",
            "version": "3.4.34.6"
          },
          {
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "netcadops",
            "version": "7.1"
          },
          {
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "netcadops",
            "version": "8.0"
          },
          {
            "model": null,
            "scope": "eq",
            "trust": 0.2,
            "vendor": "netcadops",
            "version": "8.1"
          }
        ],
        "sources": [
          {
            "db": "IVD",
            "id": "e2e414de-39ab-11e9-9907-000c29342cb1"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2018-03477"
          },
          {
            "db": "BID",
            "id": "103089"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2018-002422"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201802-781"
          },
          {
            "db": "NVD",
            "id": "CVE-2018-5477"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "cpe_match": [
                  {
                    "cpe22Uri": "cpe:/a:abb:netcadops",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2018-002422"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Ismail Erkek",
        "sources": [
          {
            "db": "BID",
            "id": "103089"
          }
        ],
        "trust": 0.3
      },
      "cve": "CVE-2018-5477",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "NONE",
                "baseScore": 5.0,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 10.0,
                "id": "CVE-2018-5477",
                "impactScore": 2.9,
                "integrityImpact": "NONE",
                "severity": "MEDIUM",
                "trust": 1.8,
                "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
                "version": "2.0"
              },
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "CNVD",
                "availabilityImpact": "NONE",
                "baseScore": 5.0,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 10.0,
                "id": "CNVD-2018-03477",
                "impactScore": 2.9,
                "integrityImpact": "NONE",
                "severity": "MEDIUM",
                "trust": 0.6,
                "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
                "version": "2.0"
              },
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "IVD",
                "availabilityImpact": "NONE",
                "baseScore": 5.0,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 10.0,
                "id": "e2e414de-39ab-11e9-9907-000c29342cb1",
                "impactScore": 2.9,
                "integrityImpact": "NONE",
                "severity": "MEDIUM",
                "trust": 0.2,
                "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
                "version": "2.9 [IVD]"
              },
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "NONE",
                "baseScore": 5.0,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 10.0,
                "id": "VHN-135508",
                "impactScore": 2.9,
                "integrityImpact": "NONE",
                "severity": "MEDIUM",
                "trust": 0.1,
                "vectorString": "AV:N/AC:L/AU:N/C:P/I:N/A:N",
                "version": "2.0"
              }
            ],
            "cvssV3": [
              {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "author": "nvd@nist.gov",
                "availabilityImpact": "NONE",
                "baseScore": 5.8,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "exploitabilityScore": 3.9,
                "id": "CVE-2018-5477",
                "impactScore": 1.4,
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "trust": 1.8,
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N",
                "version": "3.0"
              }
            ],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2018-5477",
                "trust": 1.0,
                "value": "MEDIUM"
              },
              {
                "author": "NVD",
                "id": "CVE-2018-5477",
                "trust": 0.8,
                "value": "Medium"
              },
              {
                "author": "CNVD",
                "id": "CNVD-2018-03477",
                "trust": 0.6,
                "value": "MEDIUM"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-201802-781",
                "trust": 0.6,
                "value": "MEDIUM"
              },
              {
                "author": "IVD",
                "id": "e2e414de-39ab-11e9-9907-000c29342cb1",
                "trust": 0.2,
                "value": "MEDIUM"
              },
              {
                "author": "VULHUB",
                "id": "VHN-135508",
                "trust": 0.1,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "IVD",
            "id": "e2e414de-39ab-11e9-9907-000c29342cb1"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2018-03477"
          },
          {
            "db": "VULHUB",
            "id": "VHN-135508"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2018-002422"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201802-781"
          },
          {
            "db": "NVD",
            "id": "CVE-2018-5477"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "An Information Exposure issue was discovered in ABB netCADOPS Web Application Version 3.4 and prior, netCADOPS Web Application Version 7.1 and prior, netCADOPS Web Application Version 7.2x and prior, netCADOPS Web Application Version 8.0 and prior, and netCADOPS Web Application Version 8.1 and prior. A vulnerability exists in the password entry section of netCADOPS Web Application that may expose critical database information. \nAttackers can exploit this issue to obtain sensitive information that may aid in launching further attacks",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2018-5477"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2018-002422"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2018-03477"
          },
          {
            "db": "BID",
            "id": "103089"
          },
          {
            "db": "IVD",
            "id": "e2e414de-39ab-11e9-9907-000c29342cb1"
          },
          {
            "db": "VULHUB",
            "id": "VHN-135508"
          }
        ],
        "trust": 2.7
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2018-5477",
            "trust": 3.6
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-18-051-01",
            "trust": 3.4
          },
          {
            "db": "BID",
            "id": "103089",
            "trust": 2.6
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201802-781",
            "trust": 0.9
          },
          {
            "db": "CNVD",
            "id": "CNVD-2018-03477",
            "trust": 0.8
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2018-002422",
            "trust": 0.8
          },
          {
            "db": "IVD",
            "id": "E2E414DE-39AB-11E9-9907-000C29342CB1",
            "trust": 0.2
          },
          {
            "db": "SEEBUG",
            "id": "SSVID-99008",
            "trust": 0.1
          },
          {
            "db": "VULHUB",
            "id": "VHN-135508",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "IVD",
            "id": "e2e414de-39ab-11e9-9907-000c29342cb1"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2018-03477"
          },
          {
            "db": "VULHUB",
            "id": "VHN-135508"
          },
          {
            "db": "BID",
            "id": "103089"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2018-002422"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201802-781"
          },
          {
            "db": "NVD",
            "id": "CVE-2018-5477"
          }
        ]
      },
      "id": "VAR-201802-0936",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "IVD",
            "id": "e2e414de-39ab-11e9-9907-000c29342cb1"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2018-03477"
          },
          {
            "db": "VULHUB",
            "id": "VHN-135508"
          }
        ],
        "trust": 1.65
      },
      "iot_taxonomy": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "category": [
              "ICS"
            ],
            "sub_category": null,
            "trust": 0.8
          }
        ],
        "sources": [
          {
            "db": "IVD",
            "id": "e2e414de-39ab-11e9-9907-000c29342cb1"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2018-03477"
          }
        ]
      },
      "last_update_date": "2024-11-23T23:08:46.702000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "Top Page",
            "trust": 0.8,
            "url": "http://new.abb.com/"
          },
          {
            "title": "ABB netCADOPS Web Application Information Disclosure Vulnerability Patch",
            "trust": 0.6,
            "url": "https://www.cnvd.org.cn/patchInfo/show/117911"
          },
          {
            "title": "ABB netCADOPS Web Application Repair measures for information disclosure vulnerabilities",
            "trust": 0.6,
            "url": "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=100254"
          }
        ],
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2018-03477"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2018-002422"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201802-781"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "CWE-200",
            "trust": 1.9
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-135508"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2018-002422"
          },
          {
            "db": "NVD",
            "id": "CVE-2018-5477"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 3.4,
            "url": "https://ics-cert.us-cert.gov/advisories/icsa-18-051-01"
          },
          {
            "trust": 1.7,
            "url": "http://www.securityfocus.com/bid/103089"
          },
          {
            "trust": 0.8,
            "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2018-5477"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2018-5477"
          },
          {
            "trust": 0.3,
            "url": "http://www.abb.com/"
          }
        ],
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2018-03477"
          },
          {
            "db": "VULHUB",
            "id": "VHN-135508"
          },
          {
            "db": "BID",
            "id": "103089"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2018-002422"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201802-781"
          },
          {
            "db": "NVD",
            "id": "CVE-2018-5477"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "IVD",
            "id": "e2e414de-39ab-11e9-9907-000c29342cb1"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2018-03477"
          },
          {
            "db": "VULHUB",
            "id": "VHN-135508"
          },
          {
            "db": "BID",
            "id": "103089"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2018-002422"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201802-781"
          },
          {
            "db": "NVD",
            "id": "CVE-2018-5477"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2018-02-26T00:00:00",
            "db": "IVD",
            "id": "e2e414de-39ab-11e9-9907-000c29342cb1"
          },
          {
            "date": "2018-02-26T00:00:00",
            "db": "CNVD",
            "id": "CNVD-2018-03477"
          },
          {
            "date": "2018-02-20T00:00:00",
            "db": "VULHUB",
            "id": "VHN-135508"
          },
          {
            "date": "2018-02-20T00:00:00",
            "db": "BID",
            "id": "103089"
          },
          {
            "date": "2018-04-11T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2018-002422"
          },
          {
            "date": "2018-02-20T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201802-781"
          },
          {
            "date": "2018-02-20T19:29:00.273000",
            "db": "NVD",
            "id": "CVE-2018-5477"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2018-02-26T00:00:00",
            "db": "CNVD",
            "id": "CNVD-2018-03477"
          },
          {
            "date": "2019-10-09T00:00:00",
            "db": "VULHUB",
            "id": "VHN-135508"
          },
          {
            "date": "2018-02-20T00:00:00",
            "db": "BID",
            "id": "103089"
          },
          {
            "date": "2018-04-11T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2018-002422"
          },
          {
            "date": "2019-10-17T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201802-781"
          },
          {
            "date": "2024-11-21T04:08:52.830000",
            "db": "NVD",
            "id": "CVE-2018-5477"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "remote",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201802-781"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "ABB netCADOPS Web Application Information Disclosure Vulnerability",
        "sources": [
          {
            "db": "IVD",
            "id": "e2e414de-39ab-11e9-9907-000c29342cb1"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2018-03477"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201802-781"
          }
        ],
        "trust": 1.4
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "information disclosure",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201802-781"
          }
        ],
        "trust": 0.6
      }
    }

    CVE-2018-5477 (GCVE-0-2018-5477)

    Vulnerability from nvd – Published: 2018-02-20 19:00 – Updated: 2024-08-05 05:40
    VLAI
    Summary
    An Information Exposure issue was discovered in ABB netCADOPS Web Application Version 3.4 and prior, netCADOPS Web Application Version 7.1 and prior, netCADOPS Web Application Version 7.2x and prior, netCADOPS Web Application Version 8.0 and prior, and netCADOPS Web Application Version 8.1 and prior. A vulnerability exists in the password entry section of netCADOPS Web Application that may expose critical database information.
    Severity
    No CVSS data available.
    CWE
    Assigner
    References
    Impacted products
    Vendor Product Version
    n/a ABB netCADOPS Web Application Affected: ABB netCADOPS Web Application
    Date Public
    2018-02-20 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-05T05:40:49.808Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://ics-cert.us-cert.gov/advisories/ICSA-18-051-01"
              },
              {
                "name": "103089",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/103089"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "ABB netCADOPS Web Application",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "ABB netCADOPS Web Application"
                }
              ]
            }
          ],
          "datePublic": "2018-02-20T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "An Information Exposure issue was discovered in ABB netCADOPS Web Application Version 3.4 and prior, netCADOPS Web Application Version 7.1 and prior, netCADOPS Web Application Version 7.2x and prior, netCADOPS Web Application Version 8.0 and prior, and netCADOPS Web Application Version 8.1 and prior. A vulnerability exists in the password entry section of netCADOPS Web Application that may expose critical database information."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-200",
                  "description": "CWE-200",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2018-02-22T10:57:01.000Z",
            "orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
            "shortName": "icscert"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://ics-cert.us-cert.gov/advisories/ICSA-18-051-01"
            },
            {
              "name": "103089",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/103089"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "ics-cert@hq.dhs.gov",
              "ID": "CVE-2018-5477",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "ABB netCADOPS Web Application",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "ABB netCADOPS Web Application"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "An Information Exposure issue was discovered in ABB netCADOPS Web Application Version 3.4 and prior, netCADOPS Web Application Version 7.1 and prior, netCADOPS Web Application Version 7.2x and prior, netCADOPS Web Application Version 8.0 and prior, and netCADOPS Web Application Version 8.1 and prior. A vulnerability exists in the password entry section of netCADOPS Web Application that may expose critical database information."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-200"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://ics-cert.us-cert.gov/advisories/ICSA-18-051-01",
                  "refsource": "MISC",
                  "url": "https://ics-cert.us-cert.gov/advisories/ICSA-18-051-01"
                },
                {
                  "name": "103089",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/103089"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
        "assignerShortName": "icscert",
        "cveId": "CVE-2018-5477",
        "datePublished": "2018-02-20T19:00:00.000Z",
        "dateReserved": "2018-01-12T00:00:00.000Z",
        "dateUpdated": "2024-08-05T05:40:49.808Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2018-5477 (GCVE-0-2018-5477)

    Vulnerability from cvelistv5 – Published: 2018-02-20 19:00 – Updated: 2024-08-05 05:40
    VLAI
    Summary
    An Information Exposure issue was discovered in ABB netCADOPS Web Application Version 3.4 and prior, netCADOPS Web Application Version 7.1 and prior, netCADOPS Web Application Version 7.2x and prior, netCADOPS Web Application Version 8.0 and prior, and netCADOPS Web Application Version 8.1 and prior. A vulnerability exists in the password entry section of netCADOPS Web Application that may expose critical database information.
    Severity
    No CVSS data available.
    CWE
    Assigner
    References
    Impacted products
    Vendor Product Version
    n/a ABB netCADOPS Web Application Affected: ABB netCADOPS Web Application
    Date Public
    2018-02-20 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-05T05:40:49.808Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://ics-cert.us-cert.gov/advisories/ICSA-18-051-01"
              },
              {
                "name": "103089",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/103089"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "ABB netCADOPS Web Application",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "ABB netCADOPS Web Application"
                }
              ]
            }
          ],
          "datePublic": "2018-02-20T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "An Information Exposure issue was discovered in ABB netCADOPS Web Application Version 3.4 and prior, netCADOPS Web Application Version 7.1 and prior, netCADOPS Web Application Version 7.2x and prior, netCADOPS Web Application Version 8.0 and prior, and netCADOPS Web Application Version 8.1 and prior. A vulnerability exists in the password entry section of netCADOPS Web Application that may expose critical database information."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-200",
                  "description": "CWE-200",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2018-02-22T10:57:01.000Z",
            "orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
            "shortName": "icscert"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://ics-cert.us-cert.gov/advisories/ICSA-18-051-01"
            },
            {
              "name": "103089",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/103089"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "ics-cert@hq.dhs.gov",
              "ID": "CVE-2018-5477",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "ABB netCADOPS Web Application",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "ABB netCADOPS Web Application"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "An Information Exposure issue was discovered in ABB netCADOPS Web Application Version 3.4 and prior, netCADOPS Web Application Version 7.1 and prior, netCADOPS Web Application Version 7.2x and prior, netCADOPS Web Application Version 8.0 and prior, and netCADOPS Web Application Version 8.1 and prior. A vulnerability exists in the password entry section of netCADOPS Web Application that may expose critical database information."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-200"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://ics-cert.us-cert.gov/advisories/ICSA-18-051-01",
                  "refsource": "MISC",
                  "url": "https://ics-cert.us-cert.gov/advisories/ICSA-18-051-01"
                },
                {
                  "name": "103089",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/103089"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
        "assignerShortName": "icscert",
        "cveId": "CVE-2018-5477",
        "datePublished": "2018-02-20T19:00:00.000Z",
        "dateReserved": "2018-01-12T00:00:00.000Z",
        "dateUpdated": "2024-08-05T05:40:49.808Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }