Lucene search
K

219 matches found

CNVD
CNVD
added 2025/06/17 12:0 a.m.2 views

Denial of Service Vulnerability in Various ABB Products

ABB ASPECT and others are products of ABB Switzerland.ABB ASPECT is a scalable building energy management and control solution.ABB MATRIX is an embedded building automation network controller.ABB NEXUS is a wireless and wired solution. A denial-of-service vulnerability exists in various ABB...

9.5CVSS7AI score0.00337EPSS
Exploits0References1
CNVD
CNVD
added 2025/06/17 12:0 a.m.3 views

SQL Injection Vulnerabilities in Various ABB Products

ABB ASPECT-Enterprise is a scalable building energy management and control solution.ABB NEXUS Series is a monitoring and control management system.ABB MATRIX Series is an embedded IoT ASPECT control engine designed to provide flexible field control for medium to large field control applications. ...

9.4CVSS7.7AI score0.00311EPSS
Exploits0References1
CNVD
CNVD
added 2025/06/17 12:0 a.m.3 views

Code Injection Vulnerability in Various ABB Products (CNVD-2025-13767)

ABB ASPECT-Enterprise is a scalable building energy management and control solution.ABB NEXUS Series is a monitoring and control management system.ABB MATRIX Series is an embedded IoT ASPECT control engine designed to provide flexible field control for medium to large field control applications. ...

8CVSS8.1AI score0.00567EPSS
Exploits0References1
CNVD
CNVD
added 2025/06/17 12:0 a.m.3 views

Code Injection Vulnerabilities in Various ABB Products

ABB ASPECT-Enterprise is a scalable building energy management and control solution.ABB NEXUS Series is a monitoring and control management system.ABB MATRIX Series is an embedded IoT ASPECT control engine designed to provide flexible field control for medium to large field control applications...

8.7CVSS7.4AI score0.00363EPSS
Exploits0References1
Packet Storm
Packet Storm
added 2025/05/23 12:0 a.m.79 views

📄 ABB Cylon Aspect 3.08.03 logMixDownload.php Remote Code Execution

The ABB BMS/BAS controller suffers from an authenticated blind OS command injection vulnerability. This can be exploited to inject and execute arbitrary shell commands through the 'instance' HTTP POST parameter called by the logMixDownload.php script and dependant on SELECTED=ALL case. Version...

8.3AI score
Exploits0
CNNVD
CNNVD
added 2025/05/22 12:0 a.m.5 views

ABB多款产品 安全漏洞

ABB ASPECT-Enterprise and others are products of ABB Switzerland.ABB ASPECT-Enterprise is a scalable building energy management and control solution.ABB NEXUS Series is a monitoring and control management system.ABB MATRIX Series is an embedded IoT ASPECT control engine designed to provide flexib...

9CVSS6.3AI score0.00274EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/08 4:23 a.m.11 views

CVE-2024-51547

Use of Hard-coded Credentials vulnerability in ABB ASPECT-Enterprise, ABB NEXUS Series, ABB MATRIX Series.This issue affects ASPECT-Enterprise: through 3.; NEXUS Series: through 3.; MATRIX Series: through 3...

9.8CVSS9.5AI score0.00595EPSS
Exploits1References1
NVD
NVD
added 2025/02/06 5:15 a.m.21 views

CVE-2024-51547

Use of Hard-coded Credentials vulnerability in ABB ASPECT-Enterprise, ABB NEXUS Series, ABB MATRIX Series.This issue affects ASPECT-Enterprise: through 3.; NEXUS Series: through 3.; MATRIX Series: through 3...

9.8CVSS0.00595EPSS
Exploits1References1
OSV
OSV
added 2025/02/06 5:15 a.m.4 views

CVE-2024-51547

Use of Hard-coded Credentials vulnerability in ABB ASPECT-Enterprise, ABB NEXUS Series, ABB MATRIX Series.This issue affects ASPECT-Enterprise: through 3.; NEXUS Series: through 3.; MATRIX Series: through 3...

9.8CVSS5.8AI score0.00595EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/02/06 4:12 a.m.7 views

CVE-2024-51547 Credentials Disclosure - keys

Use of Hard-coded Credentials vulnerability in ABB ASPECT-Enterprise, ABB NEXUS Series, ABB MATRIX Series.This issue affects ASPECT-Enterprise: through 3.; NEXUS Series: through 3.; MATRIX Series: through 3...

9.8CVSS9.6AI score0.00595EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/02/06 4:12 a.m.20 views

CVE-2024-51547 Credentials Disclosure - keys

Use of Hard-coded Credentials vulnerability in ABB ASPECT-Enterprise, ABB NEXUS Series, ABB MATRIX Series.This issue affects ASPECT-Enterprise: through 3.; NEXUS Series: through 3.; MATRIX Series: through 3...

9.8CVSS0.00595EPSS
Exploits1References1
CVE
CVE
added 2025/02/06 4:12 a.m.92 views

CVE-2024-51547

CVE-2024-51547 affects ABB ASPECT-Enterprise, ABB NEXUS Series and ABB MATRIX Series (firmware up to 3.08.03). The vulnerability stems from hard-coded credentials embedded in multiple components, enabling unauthorized access and potentially compromising confidentiality, integrity and availability...

9.8CVSS9.6AI score0.00595EPSS
Exploits1References1Affected Software1
RedhatCVE
RedhatCVE
added 2025/02/05 3:26 a.m.9 views

CVE-2024-51548

Dangerous File Upload vulnerabilities allow upload of malicious scripts. Affected products: ABB ASPECT - Enterprise v3.08.02; NEXUS Series v3.08.02; MATRIX Series v3.08.02...

9.9CVSS7.2AI score0.00592EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 3:25 a.m.10 views

CVE-2024-51544

Service Control vulnerabilities allow access to service restart requests and vm configuration settings. Affected products: ABB ASPECT - Enterprise v3.08.02; NEXUS Series v3.08.02; MATRIX Series v3.08.02...

8.8CVSS7.1AI score0.13516EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/02/05 3:23 a.m.9 views

CVE-2024-51555

Default Credentail vulnerabilities allows access to an Aspect device using publicly available default credentials since the system does not require the installer to change default credentials. Affected products: ABB ASPECT - Enterprise v3.07.02; NEXUS Series v3.07.02; MATRIX Series v3.07.02...

10CVSS7.1AI score0.00409EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 3:22 a.m.14 views

CVE-2024-51546

Credentials Disclosure vulnerabilities allow access to on board project back-up bundles. Affected products: ABB ASPECT - Enterprise v3.08.02; NEXUS Series v3.08.02; MATRIX Series v3.08.02...

8.7CVSS7AI score0.01497EPSS
Exploits3References1
RedhatCVE
RedhatCVE
added 2025/02/05 3:21 a.m.12 views

CVE-2024-51542

Configuration Download vulnerabilities allow access to dependency configuration information. Affected products: ABB ASPECT - Enterprise v3.08.02; NEXUS Series v3.08.02; MATRIX Series v3.08.02...

8.8CVSS7AI score0.00335EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 3:17 a.m.9 views

CVE-2024-51543

Information Disclosure vulnerabilities allow access to application configuration information. Affected products: ABB ASPECT - Enterprise v3.08.02; NEXUS Series v3.08.02; MATRIX Series v3.08.02...

8.8CVSS6.9AI score0.00341EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/02/05 3:16 a.m.7 views

CVE-2024-51545

Username Enumeration vulnerabilities allow access to application level username add, delete, modify and list functions. Affected products: ABB ASPECT - Enterprise v3.08.02; NEXUS Series v3.08.02; MATRIX Series v3.08.02...

10CVSS7.1AI score0.00416EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 3:15 a.m.16 views

CVE-2024-51554

Default Credentail vulnerabilities in ASPECT on Linux allows access to the product using publicly available default credentials. Affected products: ABB ASPECT - Enterprise v3.08.02; NEXUS Series v3.08.02; MATRIX Series v3.08.02...

9.8CVSS7AI score0.00394EPSS
Exploits0References1
Rows per page
Query Builder