CRITICAL🇬🇧 English

CVE-2020-8481

CVSS 9.8v3.1pub. 2020-04-29upd. 2024-11-21

For ABB products ABB Ability™ System 800xA and related system extensions versions 5.1, 6.0 and 6.1, Compact HMI versions 5.1 and 6.0, Control Builder Safe 1.0, 1.1 and 2.0, Symphony Plus -S+ Operations 3.0 to 3.2 Symphony Plus -S+ Engineering 1.1 to 2.2, Composer Harmony 5.1, 6.0 and 6.1, Melody Composer 5.3, 6.1/6.2 and SPE for Melody 1.0SPx (Composer 6.3), Harmony OPC Server (HAOPC) Standalone 6.0, 6.1 and 7.0, ABB Ability™ System 800xA/ Advant® OCS Control Builder A 1.3 and 1.4, Advant® OCS AC100 OPC Server 5.1, 6.0 and 6.1, Composer CTK 6.1 and 6.2, AdvaBuild 3.7 SP1 and SP2, OPCServer for MOD 300 (non-800xA) 1.4, OPC Data Link 2.1 and 2.2, Knowledge Manager 8.0, 9.0 and 9.1, Manufacturing Operations Management 1812 and 1909, confidential data is written in an unprotected file. An attacker who successfully exploited this vulnerability could take full control of the computer.

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Abb 800xa System

    APP
    Abb
    5.1
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Referencje

Powiązane podatności

CVE-2020-8479CRITICAL9.4ten sam produkt

For the Central Licensing Server component used in ABB products ABB Ability™ System 800xA and related system e...

CVE-2020-8471HIGH7.8ten sam produkt

For the Central Licensing Server component used in ABB products ABB Ability™ System 800xA and related system e...

CVE-2020-8475MEDIUM5.3ten sam produkt

For the Central Licensing Server component used in ABB products ABB Ability™ System 800xA and related system e...

CVE-2020-8476MEDIUM5.3ten sam produkt

For the Central Licensing Server component used in ABB products ABB Ability™ System 800xA and related system e...

CVE-2024-51547CRITICAL9.3PL ✓ten sam vendor

Zakodowane na stałe dane uwierzytelniające w urządzeniach ABB ASPECT/NEXUS/MATRIX

CVE-2020-8481 — CRITICAL 9.8 | CVEbaza.pl