CVE-2020-8482

Name of the Vulnerable Software and Affected Versions ABB Device Library Wizard versions 6.0.X through 6.0.3.2

Description The issue concerns insecure storage of sensitive information, allowing an unauthenticated low-privilege user to read a file containing confidential data.

Recommendations For ABB Device Library Wizard versions 6.0.X through 6.0.3.2, consider restricting access to sensitive files until a proper fix is applied. As a temporary workaround, limit the privileges of low-privilege users to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.