CVE-2019-19091
MEDIUMHitachi Energy eSOMS 4.0-6.0.3 - Information Exposure via HTTPS Response Comments
Title source: llmDescription
For ABB eSOMS versions 4.0 to 6.0.3, HTTPS responses contain comments with sensitive information about the application. An attacker might use this detail information to specifically craft the attack.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
https://search.abb.com/library/Download.aspx?DocumentID=9AKK107492A9964&LanguageCode=en&DocumentPartId=&Action=Launch
Scores
CVSS v3
4.3
EPSS
0.0076
EPSS Percentile
50.8%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Details
CWE
CWE-16
CWE-200
CWE-202
Status
published
Products (1)
hitachienergy/esoms
4.0 - 6.0.3
Published
Apr 02, 2020
Tracked Since
Feb 18, 2026