Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistABBCVELIST:CVE-2020-8473
HistoryApr 28, 2020 - 11:52 p.m.

CVE-2020-8473 ABB System 800xA Weak File Permissions - ABB System 800xA Base

2020-04-2823:52:44
CWE-732
ABB
www.cve.org
4

CVSS3

7.3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

AI Score

7.6

Confidence

High

EPSS

0

Percentile

12.6%

JSON

Insufficient folder permissions used by system functions in ABB System 800xA Base (version 6.1 and earlier) allow low privileged users to read, modify, add and delete system and application files. An authenticated attacker who successfully exploit the vulnerabilities could escalate his/her privileges, cause system functions to stop and to corrupt user applications.

CNA Affected

[
  {
    "product": "System 800xA Base",
    "vendor": "ABB",
    "versions": [
      {
        "status": "affected",
        "version": "6.1 and earlier"
      }
    ]
  }
]

Related

prion 1
nessus 1
nvd 1
cve 1
ics 1
prion
prion
Authorization
2020-04-29 00:15:00
nessus
nessus
ABB System 800xA Incorrect Default Permissions (CVE-2020-8473)
2023-03-29 00:00:00
nvd
nvd
CVE-2020-8473
2020-04-29 00:15:12
cve
cve
CVE-2020-8473
2020-04-29 00:15:12
ics
ics
ABB System 800xA
2020-06-02 12:00:00

CVSS3

7.3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

AI Score

7.6

Confidence

High

EPSS

0

Percentile

12.6%

JSON
Related for CVELIST:CVE-2020-8473
prion1nessus1nvd1cve1ics1