CVE-2019-19095

Name of the Vulnerable Software and Affected Versions ABB eSOMS versions 4.0 to 6.0.2

Description The issue is related to inadequate input/output validation, which might allow an attacker to perform stored cross-site scripting by storing malicious content in the database. This could potentially enable a remote attacker to execute arbitrary code.

Recommendations For ABB eSOMS versions 4.0 to 6.0.2, consider implementing proper input validation and sanitization to prevent malicious content from being stored in the database. As a temporary workaround, restrict access to the database and any related API endpoints to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.