Lucene search

[email protected]CVE-2021-22277

HistoryApr 01, 2022 - 11:15 p.m.

CVE-2021-22277

2022-04-0123:15:08

CWE-20

[email protected]

web.nvd.nist.gov

abb

800xa

control software

ac 800m

input validation

vulnerability

denial of service

nvd

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.4 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

38.6%

JSON

Improper Input Validation vulnerability in ABB 800xA, Control Software for AC 800M, Control Builder Safe, Compact Product Suite - Control and I/O, ABB Base Software for SoftControl allows an attacker to cause the denial of service.

Affected configurations

NVD

Node

abb800xaRange5.1.0-0–5.1.0-3ac_800m

abb800xaRange5.1.1-0–5.1.1-4ac_800m

abb800xaRange6.0.0-0–6.0.0-4ac_800m

abb800xaRange6.1.0-0–6.1.1-2ac_800m

abbbase_softwareRange5.1.0-0–5.1.0-3softcontrol

abbbase_softwareRange5.1.1-0–5.1.1-4softcontrol

abbbase_softwareRange6.0.0-0–6.0.0-3softcontrol

abbbase_softwareRange6.1.0-0–6.1.1-1softcontrol

abbcompact_product_suiteRange5.1.0-0–5.1.0-3

abbcompact_product_suiteRange5.1.1-0–5.1.1-4

abbcompact_product_suiteRange6.0.0-0–6.0.0-3

abbcompact_product_suiteRange6.1.0-0–6.1.1-1

abbcontrol_builder_safeRange<3.0

CPENameOperatorVersion
abb:800xaabb 800xale5.1.0-3
abb:800xaabb 800xale5.1.1-4
abb:800xaabb 800xalt6.0.0-4
abb:800xaabb 800xalt6.1.1-2
abb:base_softwareabb base softwarele5.1.0-3
abb:base_softwareabb base softwarele5.1.1-4
abb:base_softwareabb base softwarele6.0.0-3
abb:base_softwareabb base softwarele6.1.1-1
abb:compact_product_suiteabb compact product suitele5.1.0-3
abb:compact_product_suiteabb compact product suitele5.1.1-4

CPE	Name	Operator	Version
abb:800xa	abb 800xa	le	5.1.0-3
abb:800xa	abb 800xa	le	5.1.1-4
abb:800xa	abb 800xa	lt	6.0.0-4
abb:800xa	abb 800xa	lt	6.1.1-2
abb:base_software	abb base software	le	5.1.0-3
abb:base_software	abb base software	le	5.1.1-4
abb:base_software	abb base software	le	6.0.0-3
abb:base_software	abb base software	le	6.1.1-1
abb:compact_product_suite	abb compact product suite	le	5.1.0-3
abb:compact_product_suite	abb compact product suite	le	5.1.1-4

Rows per page:

1-10 of 131

CNA Affected

[
  {
    "product": "800xA, Control Software for AC 800M",
    "vendor": "ABB",
    "versions": [
      {
        "lessThan": "unspecified",
        "status": "affected",
        "version": "5.1.0-0",
        "versionType": "custom"
      },
      {
        "lessThanOrEqual": "5.1.0-3",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      },
      {
        "lessThan": "unspecified",
        "status": "affected",
        "version": "5.1.1-0",
        "versionType": "custom"
      },
      {
        "lessThanOrEqual": "5.1.1-4",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      },
      {
        "lessThan": "unspecified",
        "status": "affected",
        "version": "6.0.0-0",
        "versionType": "custom"
      },
      {
        "lessThanOrEqual": "6.0.0-3",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      },
      {
        "lessThan": "unspecified",
        "status": "affected",
        "version": "6.1.0-0",
        "versionType": "custom"
      },
      {
        "lessThanOrEqual": "6.1.1-1",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "Control Builder Safe",
    "vendor": "ABB",
    "versions": [
      {
        "status": "affected",
        "version": "1.x"
      },
      {
        "status": "affected",
        "version": "2.0"
      },
      {
        "status": "affected",
        "version": "3.0"
      }
    ]
  },
  {
    "product": "Compact Product Suite - Control and I/O",
    "vendor": "ABB",
    "versions": [
      {
        "lessThan": "unspecified",
        "status": "affected",
        "version": "5.1.0-0",
        "versionType": "custom"
      },
      {
        "lessThanOrEqual": "5.1.0-3",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      },
      {
        "lessThan": "unspecified",
        "status": "affected",
        "version": "5.1.1-0",
        "versionType": "custom"
      },
      {
        "lessThanOrEqual": "5.1.1-4",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      },
      {
        "lessThan": "unspecified",
        "status": "affected",
        "version": "6.0.0-0",
        "versionType": "custom"
      },
      {
        "lessThanOrEqual": "6.0.0-3",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      },
      {
        "lessThan": "unspecified",
        "status": "affected",
        "version": "6.1.0-0",
        "versionType": "custom"
      },
      {
        "lessThanOrEqual": "6.1.1-1",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "ABB Base Software for SoftControl",
    "vendor": "ABB",
    "versions": [
      {
        "lessThan": "unspecified",
        "status": "affected",
        "version": "5.1.0-0",
        "versionType": "custom"
      },
      {
        "lessThanOrEqual": "5.1.0-3",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      },
      {
        "lessThan": "unspecified",
        "status": "affected",
        "version": "5.1.1-0",
        "versionType": "custom"
      },
      {
        "lessThanOrEqual": "5.1.1-4",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      },
      {
        "lessThan": "unspecified",
        "status": "affected",
        "version": "6.0.0-0",
        "versionType": "custom"
      },
      {
        "lessThanOrEqual": "6.0.0-3",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      },
      {
        "lessThan": "unspecified",
        "status": "affected",
        "version": "6.1.0-0",
        "versionType": "custom"
      },
      {
        "lessThanOrEqual": "6.1.1-1",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

References

search.abb.com/library/Download.aspx?DocumentID=7PAA001499&LanguageCode=en&DocumentPartId=&Action=Launch

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.4 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

38.6%

JSON

Related for CVE-2021-22277

nvd1 prion1 cvelist1 nessus1