Lucene search
This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.OT_500404.NASLHistoryAug 10, 2021 - 12:00 a.m.
Abb Base Incorrect Permission Assignment for Critical Resource
2021-08-1000:00:00
This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
7
0.0004 Low
EPSS
Percentile
12.7%
Insufficient folder permissions used by system functions in ABB System 800xA products OPCServer for AC800M (versions 6.0 and earlier) and Control Builder M Professional, MMSServer for AC800M, Base Software for SoftControl (version 6.1 and earlier) allow low privileged users to read, modify, add and delete system and application files. An authenticated attacker who successfully exploited the vulnerabilities could escalate his/her privileges, cause system functions to stop and to corrupt user applications.
File data ot_500404.nasl| Vendor | Product | Version | CPE |
|---|---|---|---|
| abb | base_software | * | cpe:2.3:a:abb:base_software:*:*:*:*:*:softcontrol:*:* |
| abb | mms_server | * | cpe:2.3:a:abb:mms_server:*:*:*:*:*:*:*:* |
| abb | opc_server | * | cpe:2.3:a:abb:opc_server:*:*:*:*:*:*:*:* |
| abb | control_builder_m | * | cpe:2.3:a:abb:control_builder_m:*:*:*:*:professional:*:*:* |
Related
prion
prion
Authorization
2020-04-29 00:15:00
nvd
nvd
CVE-2020-8472
2020-04-29 00:15:12
cve
cve
CVE-2020-8472
2020-04-29 00:15:12
cvelist
cvelist
CVE-2020-8472 ABB System 800xA Weak File Permissions - different products
2020-04-28 23:52:41
ics
ics
ABB System 800xA
2020-06-02 12:00:00