Vulnerabilities > ABB > TG S3 2 Firmware > Medium

DATE CVE VULNERABILITY TITLE RISK
2020-04-22 CVE-2019-19107 Cleartext Transmission of Sensitive Information vulnerability in multiple products
The Configuration pages in ABB Telephone Gateway TG/S 3.2 and Busch-Jaeger 6186/11 Telefon-Gateway for user profiles and services transfer the password in plaintext (although hidden when displayed).
local
low complexity
abb busch-jaeger CWE-319
5.5
2020-04-22 CVE-2019-19105 Insufficiently Protected Credentials vulnerability in multiple products
The backup function in ABB Telephone Gateway TG/S 3.2 and Busch-Jaeger 6186/11 Telefon-Gateway saves the current settings and configuration of the application, including credentials of existing user accounts and other configuration's credentials in plaintext.
local
low complexity
abb busch-jaeger CWE-522
5.5