The HMISimulator component of ABB PB610 Panel Builder 600 versions 2.8.0.424 and earlier fails to validate the content-length field for HTTP requests, exposing HMISimulator to denial of service via crafted HTTP requests manipulating the content-length setting.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: ABB
Published: 2019-12-18T20:19:34
Updated: 2024-08-05T02:02:40.045Z
Reserved: 2019-11-15T00:00:00
Link: CVE-2019-18995
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2019-12-18T21:15:13.397
Modified: 2019-12-31T16:36:07.567
Link: CVE-2019-18995
Redhat
No data.