CVE-2022-34838

HIGH

ABB Zenon 8.20 - Info Disclosure

Title source: llm

Description

Storing Passwords in a Recoverable Format vulnerability in ABB Zenon 8.20 allows an attacker who successfully exploit the vulnerability may add or alter data points and corresponding attributes. Once such engineering data is used the data visualization will be altered for the end user.

References (1)

[Vendor Advisory] https://search.abb.com/library/Download.aspx?DocumentID=2NGA001479&LanguageCode=en&DocumentPartId=&Action=Launch

Scores

CVSS v3 8.1

EPSS 0.0005

EPSS Percentile 15.3%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H

Classification

CWE

CWE-522 CWE-257

Status published

Affected Products (1)

abb/zenon < 8.20

Timeline

Published Aug 24, 2022

Tracked Since Feb 18, 2026