Known Vulnerabilities for products from ABB
Listed below are 20 of the newest known vulnerabilities associated with the vendor "ABB".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Additional devices specifications by ABB can be found at device.report : ABB
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2023-3324 json | A vulnerability exists by allowing low-privileged users to read and update the data in various directories used by the Zenon... | 7.5 - HIGH | 2023-07-24 | 2023-08-01 |
| CVE-2023-3323 json | A vulnerability exists by allowing low-privileged users to read and update the data in various directories used by the Zenon... | 5.4 - MEDIUM | 2023-07-24 | 2023-08-01 |
| CVE-2023-3322 json | A vulnerability exists by allowing low-privileged users to read and update the data in various directories used by the Zenon... | 8.1 - HIGH | 2023-07-24 | 2023-08-01 |
| CVE-2023-3321 json | A vulnerability exists by allowing low-privileged users to read and update the data in various directories used by the Zenon... | 8.8 - HIGH | 2023-07-24 | 2023-08-02 |
| CVE-2023-2876 json | Sensitive Cookie Without 'HttpOnly' Flag vulnerability in ABB REX640 PCL1 (firmware modules), ABB REX640 PCL2 (Firmware modul... | 6.1 - MEDIUM | 2023-06-13 | 2023-06-26 |
| CVE-2023-2685 json | A vulnerability was found in AO-OPC server versions mentioned above. As the directory information for the service entry is no... | 6.3 - MEDIUM | 2023-07-28 | 2023-08-04 |
| CVE-2023-2625 json | A vulnerability exists that can be exploited by an authenticated client that is connected to the same network segment as the ... | 8 - HIGH | 2023-06-28 | 2023-07-06 |
| CVE-2023-1258 json | Exposure of Sensitive Information to an Unauthorized Actor vulnerability in ABB Flow-X firmware on Flow-X embedded hardware (... | 5.3 - MEDIUM | 2023-03-31 | 2023-08-02 |
| CVE-2023-0864 json | Cleartext Transmission of Sensitive Information vulnerability in ABB Terra AC wallbox (UL40/80A), ABB Terra AC wallbox (UL32A... | 4.3 - MEDIUM | 2023-05-17 | 2023-05-26 |
| CVE-2023-0863 json | Improper Authentication vulnerability in ABB Terra AC wallbox (UL40/80A), ABB Terra AC wallbox (UL32A), ABB Terra AC wallbox ... | 8.8 - HIGH | 2023-05-17 | 2023-05-26 |
| CVE-2023-0636 json | Improper Input Validation vulnerability in ABB Ltd. ASPECT®-Enterprise on ASPECT®-Enterprise, Linux (2CQG103201S3021, 2CQG1... | 9.8 - CRITICAL | 2023-06-05 | 2023-06-12 |
| CVE-2023-0635 json | Improper Privilege Management vulnerability in ABB Ltd. ASPECT®-Enterprise on ASPECT®-Enterprise, Linux (2CQG103201S3021, 2... | 9.8 - CRITICAL | 2023-06-05 | 2023-06-13 |
| CVE-2023-0580 json | Insecure Storage of Sensitive Information vulnerability in ABB My Control System (on-premise) allows an attacker who successf... | 9.8 - CRITICAL | 2023-04-06 | 2023-11-07 |
| CVE-2023-0426 json | ABB is aware of vulnerabilities in the product versions listed below. An update is available that resolves the reported vuln... | 7.5 - HIGH | 2023-08-07 | 2023-08-14 |
| CVE-2023-0425 json | ABB is aware of vulnerabilities in the product versions listed below. An update is available that resolves the reported vuln... | 7.5 - HIGH | 2023-08-07 | 2023-08-14 |
| CVE-2023-0228 json | Improper Authentication vulnerability in ABB Symphony Plus S+ Operations.This issue affects Symphony Plus S+ Operations: from... | 8.8 - HIGH | 2023-03-02 | 2023-11-07 |
| CVE-2022-34838 json | Storing Passwords in a Recoverable Format vulnerability in ABB Zenon 8.20 allows an attacker who successfully exploit the vul... | 8.4 - HIGH | 2022-08-24 | 2022-08-30 |
| CVE-2022-34837 json | Storing Passwords in a Recoverable Format vulnerability in ABB Zenon 8.20 allows an attacker who successfully exploit the vul... | 6.1 - MEDIUM | 2022-08-24 | 2022-08-29 |
| CVE-2022-34836 json | Relative Path Traversal vulnerability in ABB Zenon 8.20 allows the user to access files on the Zenon system and user also can... | 8.2 - HIGH | 2022-08-24 | 2022-08-31 |
| CVE-2022-31219 json | Vulnerabilities in the Drive Composer allow a low privileged attacker to create and write to a file anywhere on the file syst... | 7.8 - HIGH | 2022-06-15 | 2023-09-13 |
Known software with vulnerabilities from ABB
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Abb | 800xa | - |
| Application | Abb | 800xa Base System | 6.0.0 |
| Application | Abb | 800xa Batch Management | - |
| Application | Abb | 800xa Information Management | - |
| Application | Abb | 800xa Information Manager | 5.1 |
| Application | Abb | 800xa Rnrp | - |
| Application | Abb | 800xa System | 5.1 |
| Hardware | Abb | Ac800m | - |
| Application | Abb | Asset Suite | 9.0.0 |
| Application | Abb | Base Software | 5.0 |
| Application | Abb | Compact Hmi | 5.1 |
| Application | Abb | Control Builder M | 6.1 |
| Application | Abb | Control Builder Safe | 1.0 |
| Operating System | Abb | Cp651-web Firmware | bsp_un30_1.76 |
| Operating System | Abb | Cp651 Firmware | bsp_un30_1.76 |
| Operating System | Abb | Cp661-web Firmware | bsp_un30_1.76 |
| Operating System | Abb | Cp661 Firmware | bsp_un30_1.76 |
| Operating System | Abb | Cp665-web Firmware | bsp_un30_1.76 |
| Operating System | Abb | Cp665 Firmware | bsp_un30_1.76 |
| Operating System | Abb | Cp676-web Firmware | bsp_un30_1.76 |