QID 590520
Date Published: 2021-11-23
QID 590520: ABB CP651 HMI Use of Hard-coded Credentials Vulnerability (ICSA-19-178-02)
AFFECTED PRODUCTS
ABB reports the vulnerability affects the following CP651 HMI products:
CP651, order code: 1SAP551100R0001, revision index B1 with BSP UN30 v1.76 and prior
CP651-WEB, order code: 1SAP551200R0001, revision index A0 with BSP UN30 v1.76 and prior
CP661, order code: 1SAP561100R0001, revision index B1 with BSP UN30 v1.76 and prior
CP661-WEB, order code: 1SAP561200R0001, revision index A0 with BSP UN30 v1.76 and prior
CP665, order code: 1SAP565100R0001, revision index B1 with BSP UN30 v1.76 and prior
CP665-WEB, order code: 1SAP565200R0001, revision index A0 with BSP UN30 v1.76 and prior
CP676, order code: 1SAP576100R0001, revision index B1 with BSP UN30 v1.76 and prior
CP676-WEB, order code: 1SAP576200R0001, revision index A0 with BSP UN30 v1.76 and prior.
QID Detection Logic (Authenticated):
QID checks for the Vulnerable version of using passive scanning
Successful exploitation of this vulnerability could allow an attacker to prevent legitimate access to an affected system node, remotely cause an affected system node to stop, take control of an affected system node, or insert and run arbitrary code in an affected system node.
Customers are advised to refer to CERT MITIGATIONS section ICSA-19-178-02 for affected packages and patching details.
- ICSA-19-178-02 -
www.us-cert.gov/ics/advisories/ICSA-19-178-02
CVEs related to QID 590520
| Advisory ID | Software | Component | Link |
|---|---|---|---|
| ICSA-19-178-02 |
www.us-cert.gov/ics/advisories/ICSA-19-178-02 |