Lucene search
K

The vulnerability of microprogramming software in embedded network control controllers of ASPECT Enterprise, NEXUS Series, and MATRIX Series lies in improper name restrictions for path entries to the catalog. This allows unauthorized access by attackers to resources and enables them to modify them.

🗓️ 10 Dec 2024 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType 
bdu_fstec
 bdu_fstec
🔗 bdu.fstec.ru👁 5 Views

ASPECT, NEXUS, MATRIX controllers have catalog path name restrictions vulnerability allowing unauthorized access and modification.

Related
Detection
Refs
ReporterTitlePublishedViews
Family
Circl
CVE-2024-51549
5 Dec 202415:21
circl
CNNVD
ABB ASPECT 安全漏洞
5 Dec 202400:00
cnnvd
CVE
CVE-2024-51549
5 Dec 202412:54
cve
Cvelist
CVE-2024-51549 Absolute Path Traversal
5 Dec 202412:54
cvelist
EUVD
EUVD-2024-45753
3 Oct 202520:07
euvd
NCSC
Vulnerabilities fixed in ABB ASPECT, NEXUS Series and MATRIX Series
6 Dec 202411:49
ncsc
NVD
CVE-2024-51549
5 Dec 202413:15
nvd
OSV
CVE-2024-51549
5 Dec 202413:15
osv
Positive Technologies
PT-2024-9241 · Abb · Abb Aspect +2
5 Dec 202400:00
ptsecurity
RedhatCVE
CVE-2024-51549
5 Feb 202503:12
redhatcve
Rows per page
Vulners

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

10 Dec 2024 00:00Current
5.5Medium risk
Vulners AI Score5.5
CVSS 29.7
CVSS 310
EPSS0.00543
5