Privilege escalation

2023-06-0504:15:00

PRIOn knowledge base

www.prio-n.com

improper privilege management

abb ltd.

aspect®-enterprise

nexus series

matrix series

linux

privilege escalation

vulnerability

nvd

9.3 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

54.4%

JSON

Improper Privilege Management vulnerability in ABB Ltd. ASPECT®-Enterprise on ASPECT®-Enterprise, Linux (2CQG103201S3021, 2CQG103202S3021, 2CQG103203S3021, 2CQG103204S3021 modules), ABB Ltd. NEXUS Series on NEXUS Series, Linux (2CQG100102R2021, 2CQG100104R2021, 2CQG100105R2021, 2CQG100106R2021, 2CQG100110R2021, 2CQG100112R2021, 2CQG100103R2021, 2CQG100107R2021, 2CQG100108R2021, 2CQG100109R2021, 2CQG100111R2021, 2CQG100113R2021 modules), ABB Ltd. MATRIX Series on MATRIX Series, Linux (2CQG100102R1021, 2CQG100103R1021, 2CQG100104R1021, 2CQG100105R1021, 2CQG100106R1021 modules) allows Privilege Escalation.This issue affects ASPECT®-Enterprise: from 3.0;0 before 3.07.01; NEXUS Series: from 3.0;0 before 3.07.01; MATRIX Series: from 3.0;0 before 3.07.01.

CPENameOperatorVersion
aspect-ent-12_firmwarege3.0.0
aspect-ent-12_firmwarelt3.07.01
aspect-ent-256_firmwarege3.0.0
aspect-ent-256_firmwarelt3.07.01
aspect-ent-2_firmwarege3.0.0
aspect-ent-2_firmwarelt3.07.01
aspect-ent-96_firmwarege3.0.0
aspect-ent-96_firmwarelt3.07.01
matrix-11_firmwarege3.0.0
matrix-11_firmwarelt3.07.01

Name	Operator	Version
aspect-ent-12_firmware	ge	3.0.0
aspect-ent-12_firmware	lt	3.07.01
aspect-ent-256_firmware	ge	3.0.0
aspect-ent-256_firmware	lt	3.07.01
aspect-ent-2_firmware	ge	3.0.0
aspect-ent-2_firmware	lt	3.07.01
aspect-ent-96_firmware	ge	3.0.0
aspect-ent-96_firmware	lt	3.07.01
matrix-11_firmware	ge	3.0.0
matrix-11_firmware	lt	3.07.01