CVE-2019-7229

HIGH

ABB CP635 HMI - Info Disclosure

Title source: llm

Description

The ABB CP635 HMI uses two different transmission methods to upgrade its firmware and its software components: "Utilization of USB/SD Card to flash the device" and "Remote provisioning process via ABB Panel Builder 600 over FTP." Neither of these transmission methods implements any form of encryption or authenticity checks against the new firmware HMI software binary files.

References (5)

[Exploit, Mailing List, Third Party Advisory] http://seclists.org/fulldisclosure/2019/Jun/34

[Exploit, Third Party Advisory] https://www.darkmatter.ae/xen1thlabs/abb-hmi-absence-of-signature-verification-vulnerability-xl-19-005/

[Mitigation, Patch, Vendor Advisory] https://search.abb.com/library/Download.aspx?DocumentID=3ADR010376&LanguageCode=en&DocumentPartId=&Action=Launch

[Mitigation, Patch, Vendor Advisory] https://search.abb.com/library/Download.aspx?DocumentID=3ADR010402&LanguageCode=en&DocumentPartId=&Action=Launch

[Exploit, Third Party Advisory, VDB Entry] http://packetstormsecurity.com/files/153387/ABB-HMI-Missing-Signature-Verification.html

Scores

CVSS v3 8.3

EPSS 0.0022

EPSS Percentile 45.0%

Attack Vector ADJACENT_NETWORK

CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H

Details

CWE

CWE-494

Status published

Products (8)

abb/board_support_package_un31 < 2.31

abb/cp620-web_firmware < 2.8.0.424

abb/cp620_firmware < 2.8.0.424

abb/cp630-web_firmware < 2.8.0.424

abb/cp630_firmware < 2.0.8.424

abb/cp635-b_firmware < 2.8.0.424

abb/cp635-web_firmware < 2.8.0.424

abb/cp635_firmware < 2.8.0.424

Published Jun 24, 2019

Tracked Since Feb 18, 2026