For ABB eSOMS 4.0 to 6.0.3, the Cache-Control and Pragma HTTP header(s) have not been properly configured within the application response. This can potentially allow browsers and proxies to cache sensitive information.
2020-04-02T20:15:13.863
2024-11-21T04:33:58.133
Modified
CVSSv3.1: 6.5 (MEDIUM)
AV:N/AC:L/Au:N/C:P/I:P/A:N
10.0
4.9
Type | Vendor | Product | Version/Range | Vulnerable? |
---|---|---|---|---|
Application | hitachienergy | esoms | ≤ 6.0.3 | Yes |