Products

Solutions

Company

Book A Live Demo

CVE-2019-19090 : What You Need to Know

Learn about CVE-2019-19090 affecting ABB eSOMS versions 4.0 to 6.0.2. Understand the impact, technical details, and mitigation steps for this vulnerability.

ABB eSOMS versions 4.0 to 6.0.2 are vulnerable due to the absence of the Secure Flag in the HTTP response header, potentially exposing cookie information to eavesdropping.

Understanding CVE-2019-19090

This CVE involves the lack of the Secure Flag in the HTTP response header of ABB eSOMS versions 4.0 to 6.0.2, leading to a security vulnerability.

What is CVE-2019-19090?

The CVE-2019-19090 vulnerability pertains to ABB eSOMS versions 4.0 to 6.0.2, where the Secure Flag is not set in the HTTP response header, allowing unencrypted connections to potentially access cookie information, making it susceptible to eavesdropping.

The Impact of CVE-2019-19090

CVSS Base Score

Attack Vector

Attack Complexity

User Interaction

Confidentiality Impact

Integrity Impact

Privileges Required

Scope

Availability Impact

Technical Details of CVE-2019-19090

This section provides detailed technical information about the CVE-2019-19090 vulnerability.

Vulnerability Description

The vulnerability arises from the absence of the Secure Flag in the HTTP response header of ABB eSOMS versions 4.0 to 6.0.2, allowing potential access to cookie information over unencrypted connections.

Affected Systems and Versions

Affected Product

Vendor

Affected Versions

Exploitation Mechanism

The vulnerability can be exploited by intercepting unencrypted connections to access sensitive cookie information, posing a risk of eavesdropping.

Mitigation and Prevention

To address CVE-2019-19090, follow these mitigation strategies:

Immediate Steps to Take

Implement HTTPS to encrypt communication and protect sensitive data.

Regularly monitor network traffic for any unauthorized access attempts.

Educate users on secure browsing practices to minimize risks.

Long-Term Security Practices

Conduct regular security audits and vulnerability assessments.

Keep software and systems up to date with the latest security patches.

Patching and Updates

Apply patches provided by ABB for eSOMS versions 4.0 to 6.0.2 to ensure the Secure Flag is properly set in the HTTP response header.

CVE-2019-19090 : What You Need to Know

Understanding CVE-2019-19090

What is CVE-2019-19090?

The Impact of CVE-2019-19090

Technical Details of CVE-2019-19090

Vulnerability Description

Affected Systems and Versions

Exploitation Mechanism

Mitigation and Prevention

Immediate Steps to Take

Long-Term Security Practices

Patching and Updates

Popular CVEs

CVE Id

Published Date

Is your System Free of Underlying Vulnerabilities?
Find Out Now

CVE-2019-19090 : What You Need to Know

.css-lczsrn{margin:0;font-family:Inter;font-weight:400;font-size:1.2857142857142858rem;line-height:1.5;color:#161857;text-align:left;font-size:24px;font-weight:700;margin-top:1rem;font-family:sans-serif;}Understanding CVE-2019-19090

.css-ru2q5j{margin:0;font-family:Inter;font-weight:400;font-size:1.2857142857142858rem;line-height:1.5;color:#161857;text-align:left;font-size:1.2rem;font-weight:700;margin-top:1rem;margin-bottom:0rem;font-family:sans-serif;}What is CVE-2019-19090?

The Impact of CVE-2019-19090

Technical Details of CVE-2019-19090

Vulnerability Description

Affected Systems and Versions

Exploitation Mechanism

Mitigation and Prevention

Immediate Steps to Take

Long-Term Security Practices

Patching and Updates

Popular CVEs

CVE Id

Published Date

Is your System Free of Underlying Vulnerabilities? Find Out Now

Understanding CVE-2019-19090

What is CVE-2019-19090?

Is your System Free of Underlying Vulnerabilities?
Find Out Now