abb

234 tracked vulnerabilities.

CVE-2019-18994 LOW
ABB PB610 Panel Builder <2.8.0.424 - DoS
Dec 18, 2019
CVSS 3.9
EPSS 0.00
CVE-2019-18250 CRITICAL
ABB Plant Connect and Power Generation Information Manager - Authentication Bypass
Nov 26, 2019
CVSS 9.8
EPSS 0.00
CVE-2019-7225 HIGH
ABB CP600 Series Firmware < 1.76 - Use of Hard-coded Credentials
Jun 27, 2019
CVSS 8.8
EPSS 0.00
CVE-2019-7227 HIGH
ABB PB610 Panel Builder 600 Firmware 1.91-2.8.0.367 - Authenticated Path Traversal via CWD Command
Jun 27, 2019
CVSS 7.3
EPSS 0.01
CVE-2019-7226 HIGH
ABB PB610 Panel Builder 600 Firmware >=1.91 <2.8.0.367 - Unauthenticated Authentication Bypass via /cgi/loginDefaultUser
Jun 27, 2019
CVSS 8.8
EPSS 0.00
CVE-2019-7228 HIGH
ABB IDAL HTTP Server - Buffer Overflow
Jun 27, 2019
CVSS 8.8
EPSS 0.02
CVE-2019-7231 MEDIUM
ABB IDAL FTP Server - Buffer Overflow
Jun 24, 2019
CVSS 5.7
EPSS 0.02
CVE-2019-7229 HIGH
ABB CP635 HMI - Unauthenticated Firmware Download Without Integrity Check
Jun 24, 2019
CVSS 8.3
EPSS 0.00
CVE-2019-7232 HIGH
ABB PB610 Panel Builder 600 Firmware <2.8.0.367 - Stack-Based Buffer Overflow via Long Host Header
Jun 24, 2019
CVSS 8.8
EPSS 0.07
CVE-2019-7230 HIGH
ABB IDAL FTP Server - Buffer Overflow
Jun 24, 2019
CVSS 8.8
EPSS 0.02
CVE-2019-10953 HIGH
ABB PM554-TP-ETH Firmware - Denial of Service via Network Packet Flood
Apr 17, 2019
CVSS 7.5
EPSS 0.00
CVE-2018-19008 HIGH
ABB CP400 Panel Builder < 2.0.7.05 - Remote Code Execution via TextEditor File Parser
Feb 13, 2019
CVSS 7.8
EPSS 0.00
CVE-2018-17928 MEDIUM
ABB CMS-770 Firmware < 1.7.1 - Unauthenticated Sensitive Configuration File Exposure
Jan 31, 2019
CVSS 6.5
EPSS 0.00
CVE-2018-17926 MEDIUM
ABB ETH-FW Firmware < 1.01 and FW Firmware < 2.22 - Unauthenticated Arbitrary File Upload via Language File Bypass
Jan 31, 2019
CVSS 4.3
EPSS 0.00
CVE-2018-18997 MEDIUM
ABB GATE-E1 and GATE-E2 - Unauthenticated Stored Cross-Site Scripting via Device Properties
Jan 03, 2019
CVSS 6.1
EPSS 0.00
CVE-2018-18995 CRITICAL
ABB GATE-E1 and GATE-E2 Firmware - Missing Authentication for Critical Function
Jan 03, 2019
CVSS 9.8
EPSS 0.01
CVE-2018-10616 HIGH
ABB Panel Builder 800 - Code Injection
Jul 18, 2018
CVSS 7.8
EPSS 0.00
CVE-2018-5477 MEDIUM
ABB netCADOPS <8.1 - Info Disclosure
Feb 20, 2018
CVSS 5.8
EPSS 0.00
CVE-2017-7933 CRITICAL
ABB IP Gateway Firmware < 3.39 - Plain-Text Password Storage
Jun 06, 2018
CVSS 9.8
EPSS 0.00
CVE-2017-7931 CRITICAL
ABB IP Gateway Firmware < 3.39 - Unauthenticated Configuration File Access
Jun 06, 2018
CVSS 9.8
EPSS 0.01
CVE-2017-7906 HIGH
ABB IP Gateway Firmware < 3.39 - Cross-Site Request Forgery
Jun 06, 2018
CVSS 8.8
EPSS 0.00
CVE-2017-9664 CRITICAL
ABB SREA-01 <3.31.5 & SREA-50 <3.32.8 - Info Disclosure
May 24, 2018
CVSS 9.8
EPSS 0.02
CVE-2017-7920 HIGH
ABB VSN300 WiFi Logger Card <=1.8.15 & VSN300 for React <=2.1.3 - Unauthenticated Information Disclosure
Aug 07, 2017
CVSS 7.5
EPSS 0.01
CVE-2017-7916 MEDIUM
ABB VSN300 WiFi Logger Card <=1.8.15 & VSN300 for React <=2.1.3 - Unauthenticated Privilege Escalation
Aug 07, 2017
CVSS 6.5
EPSS 0.00
CVE-2016-4527 LOW
ABB PCM600 < 2.6 - Local Sensitive Information Exposure via Improper Credential Storage
Jun 10, 2016
CVSS 3.3
EPSS 0.00
Products
ASPECT-Enterprise 32 MATRIX Series 32 NEXUS Series 32 aspect-ent-12_firmware 29 aspect-ent-256_firmware 29 aspect-ent-2_firmware 29 aspect-ent-96_firmware 29 matrix-11_firmware 29 matrix-216_firmware 29 matrix-232_firmware 29 matrix-264_firmware 29 matrix-296_firmware 29 nexus-2128_firmware 29 nexus-264_firmware 29 nexus-3-2128_firmware 29 nexus-3-264_firmware 29 nexus-2128-a_firmware 28 nexus-2128-f_firmware 28 nexus-2128-g_firmware 28 nexus-264-a_firmware 28 nexus-264-f_firmware 28 nexus-264-g_firmware 28 symphony_\+_historian 9 symphony_\+_operations 9 FLXEON 7 zenon 7 automation_builder 6 mint_workbench 6 pb610_panel_builder_600_firmware 6 800xa_system 5
Quick Filters
Critical CVEs With Exploits In CISA KEV