Lucene search

ABBCVELIST:CVE-2023-0864

HistoryMay 17, 2023 - 7:15 a.m.

CVE-2023-0864 Configuration data is exchanged in plaintext and could be available to a nearby attacker if present during configuration or usage of the device via Bluetooth Low Energy (BLE).

2023-05-1707:15:52

CWE-319

ABB

www.cve.org

cleartext transmission

sensitive information

abb terra ac wallbox

bluetooth low energy

vulnerability

7.1 High

CVSS3

Attack Vector

ADJACENT

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

0.0004 Low

EPSS

Percentile

12.8%

JSON

Cleartext Transmission of Sensitive Information vulnerability in ABB Terra AC wallbox (UL40/80A), ABB Terra AC wallbox (UL32A), ABB Terra AC wallbox (CE) (Terra AC MID), ABB Terra AC wallbox (CE) Terra AC Juno CE, ABB Terra AC wallbox (CE) Terra AC PTB, ABB Terra AC wallbox (CE) Symbiosis, ABB Terra AC wallbox (JP).This issue affects Terra AC wallbox (UL40/80A): from 1.0;0 through 1.5.5; Terra AC wallbox (UL32A) : from 1.0;0 through 1.6.5; Terra AC wallbox (CE) (Terra AC MID): from 1.0;0 through 1.6.5; Terra AC wallbox (CE) Terra AC Juno CE: from 1.0;0 through 1.6.5; Terra AC wallbox (CE) Terra AC PTB : from 1.0;0 through 1.5.25; Terra AC wallbox (CE) Symbiosis: from 1.0;0 through 1.2.7; Terra AC wallbox (JP): from 1.0;0 through 1.6.5.

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "Terra AC wallbox (UL40/80A)",
    "vendor": "ABB",
    "versions": [
      {
        "lessThanOrEqual": "1.5.5",
        "status": "affected",
        "version": "1.0;0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Terra AC wallbox (UL32A) ",
    "vendor": "ABB",
    "versions": [
      {
        "lessThanOrEqual": "1.6.5",
        "status": "affected",
        "version": "1.0;0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Terra AC wallbox (CE)  (Terra AC MID)",
    "vendor": "ABB",
    "versions": [
      {
        "lessThanOrEqual": "1.6.5",
        "status": "affected",
        "version": "1.0;0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Terra AC wallbox (CE)  Terra AC Juno CE",
    "vendor": "ABB",
    "versions": [
      {
        "lessThanOrEqual": "1.6.5",
        "status": "affected",
        "version": "1.0;0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Terra AC wallbox (CE) Terra AC PTB ",
    "vendor": "ABB",
    "versions": [
      {
        "lessThanOrEqual": "1.5.25",
        "status": "affected",
        "version": "1.0;0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Terra AC wallbox (CE) Symbiosis",
    "vendor": "ABB",
    "versions": [
      {
        "lessThanOrEqual": "1.2.7",
        "status": "affected",
        "version": "1.0;0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Terra AC wallbox (JP)",
    "vendor": "ABB",
    "versions": [
      {
        "lessThanOrEqual": "1.6.5",
        "status": "affected",
        "version": "1.0;0",
        "versionType": "custom"
      }
    ]
  }
]

References

search.abb.com/library/Download.aspx?DocumentID=9AKK108468A1415&LanguageCode=en&DocumentPartId=&Action=Launch

7.1 High

CVSS3

Attack Vector

ADJACENT

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

0.0004 Low

EPSS

Percentile

12.8%

JSON

Related for CVELIST:CVE-2023-0864