CVE-2019-5620 ABB MicroSCADA Pro SYS600 Missing Authentication for Critical Function

2020-04-2922:15:27

CWE-306

rapid7

www.cve.org

AI Score

9.6

Confidence

High

EPSS

0.088

Percentile

94.7%

JSON

ABB MicroSCADA Pro SYS600 version 9.3 suffers from an instance of CWE-306: Missing Authentication for Critical Function.

CNA Affected

[
  {
    "product": "MicroSCADA Pro SYS600",
    "vendor": "ABB",
    "versions": [
      {
        "status": "affected",
        "version": "9.3"
      }
    ]
  }
]

References

www.rapid7.com/db/modules/exploit/windows/scada/abb_wserver_exec