Vulnerabilities > Hitachienergy > Esoms > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-07-14 | CVE-2021-35527 | Insufficiently Protected Credentials vulnerability in Hitachienergy Esoms Password autocomplete vulnerability in the web application password field of Hitachi ABB Power Grids eSOMS allows attacker to gain access to user credentials that are stored by the browser. | 7.5 |
| 2021-06-14 | CVE-2021-26845 | Incorrect Authorization vulnerability in Hitachienergy Esoms Information Exposure vulnerability in Hitachi ABB Power Grids eSOMS allows unauthorized user to gain access to report data if the URL used to access the report is discovered. | 7.5 |
| 2020-04-02 | CVE-2019-19097 | Inadequate Encryption Strength vulnerability in Hitachienergy Esoms ABB eSOMS versions 4.0 to 6.0.3 accept connections using medium strength ciphers. | 7.5 |
| 2020-04-02 | CVE-2019-19094 | SQL Injection vulnerability in Hitachienergy Esoms Lack of input checks for SQL queries in ABB eSOMS versions 3.9 to 6.0.3 might allow an attacker SQL injection attacks against the backend database. | 7.6 |