Primary

Context

ABB ANC Products Sensitive Data Exposure Vulnerability via GET Request

Vulnerability

A vulnerability exists in ABB ANC, ANC-L, and ANC-mini products, all through version 1.1.4, allowing the use of GET request methods to transmit sensitive query strings. This could lead to unintended exposure of confidential information.

Impact

Exploitation of this vulnerability could result in the unintentional disclosure of sensitive information through query strings in GET requests.

Added: Sep 1, 2025, 7:22 PM

Updated: Sep 1, 2025, 7:22 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

6.4

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

6.4

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

ABB ANC Products Sensitive Data Exposure Vulnerability via GET Request

Vulnerability

Impact

Affected Products

ABB ANC

ABB ANC-L

ABB ANC-mini

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating