Lucene search
K

85 matches found

RedhatCVE
RedhatCVE
added 2025/05/24 6:13 p.m.13 views

CVE-2025-2409

File corruption vulnerabilities in ASPECT provide attackers access to overwrite sys-tem files if session administrator credentials become compromised This issue affects ASPECT-Enterprise: through 3.08.03; NEXUS Series: through 3.08.03; MATRIX Series: through 3.08.03...

9.1CVSS7.3AI score0.00402EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/24 6:13 p.m.12 views

CVE-2025-30172

Remote Code Execution vulnerabilities are present in ASPECT if session administrator credentials become compromised This issue affects ASPECT-Enterprise: through 3.08.03; NEXUS Series: through 3.08.03; MATRIX Series: through 3.08.03...

8.9CVSS7.8AI score0.00456EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/24 6:13 p.m.11 views

CVE-2025-2410

Port manipulation vulnerabilities in ASPECT provide attackers with the ability to con-trol TCP/IP port access if session administrator credentials become compromised. This issue affects ASPECT-Enterprise: through 3.08.03; NEXUS Series: through 3.08.03; MATRIX Series: through 3.08.03...

9.1CVSS7.1AI score0.00435EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/24 6:13 p.m.14 views

CVE-2024-13929

Servlet injection vulnerabilities in ASPECT allow remote code execution if session administrator credentials become compromised. This issue affects ASPECT-Enterprise: through 3.08.03; NEXUS Series: through 3.08.03; MATRIX Series: through 3.08.03...

7.5CVSS8.3AI score0.00582EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/24 6:13 p.m.9 views

CVE-2024-13928

SQL injection vulnerabilities in ASPECT allow unintended access and manipulation of database repositories if session administrator credentials become compromised. This issue affects ASPECT-Enterprise: through 3.08.03; NEXUS Series: through 3.08.03; MATRIX Series: through 3.08.03...

7.5CVSS8.2AI score0.00317EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/24 6:13 p.m.12 views

CVE-2024-13931

Relative Path Traversal vulnerabilities in ASPECT allow access to file resources if session administrator credentials become compromised. This issue affects ASPECT-Enterprise: through 3.08.03; NEXUS Series: through 3.08.03; MATRIX Series: through 3.08.03...

7.5CVSS7.1AI score0.00354EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/24 6:13 p.m.13 views

CVE-2024-9639

Remote Code Execution vulnerabilities are present in ASPECT if session administra-tor credentials become compromised. This issue affects ASPECT-Enterprise: through 3.08.03; NEXUS Series: through 3.08.03; MATRIX Series: through 3.08.03...

8CVSS7.8AI score0.00548EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/24 6:13 p.m.25 views

CVE-2024-13930

An Unchecked Loop Condition in ASPECT provides an attacker the ability to maliciously consume system resources if session administrator credentials become compromised This issue affects ASPECT-Enterprise: through 3.08.03; NEXUS Series: through 3.08.03; MATRIX Series: through 3.08.03...

5.9CVSS6.8AI score0.0032EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/24 5:18 p.m.11 views

CVE-2024-48850

Absolute File Traversal vulnerabilities in ASPECT allows access and modification of unintended resources. This issue affects ASPECT-Enterprise: through 3.08.03; NEXUS Series: through 3.08.03; MATRIX Series: through 3.08.03...

7.5CVSS7.2AI score0.00391EPSS
Exploits0
NVD
NVD
added 2025/05/23 10:15 a.m.15 views

CVE-2024-13945

Stored Absolute Path Traversal vulnerabilities in ASPECT could expose sensitive data if administrator credentials become compromised. This issue affects ASPECT-Enterprise: through 3.; NEXUS Series: through 3.; MATRIX Series: through 3...

8.4CVSS0.00352EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/05/23 9:18 a.m.15 views

CVE-2024-13945 Stored Absolute Path Traversal

Stored Absolute Path Traversal vulnerabilities in ASPECT could expose sensitive data if administrator credentials become compromised. This issue affects ASPECT-Enterprise: through 3.; NEXUS Series: through 3.; MATRIX Series: through 3...

8.4CVSS0.00352EPSS
Exploits0References1
CVE
CVE
added 2025/05/23 9:18 a.m.48 views

CVE-2024-13945

CVE-2024-13945 describes a Stored Absolute Path Traversal affecting ABB products: ASPECT-Enterprise, NEXUS Series, and MATRIX Series (through version 3.*). Root cause is a path traversal flaw in the ASPECT component that can lead to sensitive data exposure when administrator credentials are compr...

8.4CVSS6.1AI score0.00352EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/05/23 9:18 a.m.3 views

CVE-2024-13945 Stored Absolute Path Traversal

Stored Absolute Path Traversal vulnerabilities in ASPECT could expose sensitive data if administrator credentials become compromised. This issue affects ASPECT-Enterprise: through 3.; NEXUS Series: through 3.; MATRIX Series: through 3...

8.4CVSS6.1AI score0.00352EPSS
Exploits0References1
NCSC
NCSC
added 2025/05/23 8:40 a.m.9 views

Vulnerabilities fixed in ABB ASPECT product line

ABB has fixed vulnerabilities in the ASPECT product line, including ASPECT-Enterprise, NEXUS Series and MATRIX Series up to version 3.08.03. The vulnerabilities include Remote Code Execution, SQL injection, servlet injection, and various forms of file access and manipulation. These vulnerabilitie...

9.5CVSS8.1AI score0.00582EPSS
Exploits0References1
NVD
NVD
added 2025/05/22 7:15 p.m.9 views

CVE-2024-51552

Weak password storage vulnerabilities exist in ASPECT if administrator credentials become compromisedThis issue affects ASPECT-Enterprise: through 3.; NEXUS Series: through 3.; MATRIX Series: through 3...

7.1CVSS0.00267EPSS
Exploits0References1
NVD
NVD
added 2025/05/22 7:15 p.m.10 views

CVE-2024-51553

Predictable filename vulnerabilities in ASPECT may expose sensitive information to a potential attacker if administrator credentials become compromisedThis issue affects ASPECT-Enterprise: through 3.; NEXUS Series: through 3.; MATRIX Series: through 3...

7CVSS0.00285EPSS
Exploits0References1
NVD
NVD
added 2025/05/22 7:15 p.m.12 views

CVE-2024-48848

Large content vulnerabilities are present in ASPECT exposing a device to disk overutilization on a system if administrator credentials become compromisedThis issue affects ASPECT-Enterprise: through 3.; NEXUS Series: through 3.; MATRIX Series: through 3...

7CVSS0.00306EPSS
Exploits0References1
NVD
NVD
added 2025/05/22 7:15 p.m.6 views

CVE-2024-13957

SSRF Server Side Request Forgery vulnerabilities exist in ASPECT if administrator credentials become compromisedThis issue affects ASPECT-Enterprise: through 3.; NEXUS Series: through 3.; MATRIX Series: through 3...

7.6CVSS0.00241EPSS
Exploits0References1
NVD
NVD
added 2025/05/22 7:15 p.m.7 views

CVE-2024-13958

Stored Cross Site Scripting vulnerabilities exist in ASPECT if administrator creden-tials become compromisedThis issue affects ASPECT-Enterprise: through 3.; NEXUS Series: through 3.; MATRIX Series: through 3...

4.8CVSS0.00186EPSS
Exploits0References1
NVD
NVD
added 2025/05/22 7:15 p.m.11 views

CVE-2024-13955

2nd Order SQL injection vulnerabilities in ASPECT allow unintended access and manipulation of database repositories if administrator credentials become compromised.This issue affects ASPECT-Enterprise: through 3.; NEXUS Series: through 3.; MATRIX Series: through 3...

9.4CVSS0.00311EPSS
Exploits0References1
Rows per page
Query Builder