860 matches found
CVE-2025-7679 Session ID Basic Auth Bypass
The ASPECT system allows users to bypass authentication. This issue affects all versions of ASPECT...
CVE-2025-7677 DOS attack possible
A denial-of-service DoS attack is possible if access to the local network is provided to unauthorized users. This is due to a buffer copy issue that may lead to a software crash. This issue affects all versions of ASPECT...
CVE-2025-7677 DOS attack possible
A denial-of-service DoS attack is possible if access to the local network is provided to unauthorized users. This is due to a buffer copy issue that may lead to a software crash. This issue affects all versions of ASPECT...
CVE-2025-7677
CVE-2025-7677 affects ABB Aspect (industrial control system) with a DoS caused by a buffer copy issue. According to ICSA-25-252-02, the DoS affects all versions of ASPECT, with specific note that versions prior to 3.08.04-s01 are impacted. The DoS is exploitable if an attacker has access to the l...
CVE-2025-53191
...
CVE-2025-53191
CVE-2025-53191 entry is rejected/not used and does not represent an active vulnerability.
CVE-2025-53191
...
CVE-2025-53190
...
CVE-2025-53190
...
CVE-2025-53190
ABB Aspect is affected by CVE-2025-53190 (see Red Hat CVE entry and PT Security). Vulnerable versions are ABB Aspect prior to 3.08.04-s01. The recommended remediation is to upgrade to version 3.08.04-s01 or later. No exploit details are provided in the supplied sources.
CVE-2025-53189
CVE-2025-53189 concerns an authorization bypass in ABB Aspect triggered by a user-controlled key. Affected software: ABB Aspect, with versions prior to 3.08.04-s01. The issue’s root cause and exploit specifics are not detailed in the provided documents; remediation guidance available is to update...
CVE-2025-53189
...
CVE-2025-53189
...
CVE-2025-53188
...
CVE-2025-53188
This CVE entry is rejected/not used and does not represent an active vulnerability entry.
CVE-2025-53188
...
CVE-2025-53187
Due to an issue in configuration, code that was intended for debugging purposes was included in the market release of the ASPECT FW allowing an attacker to bypass authentication. This vulnerability may allow an attacker to change the system time, access files, and make function calls without prio...
CVE-2025-53187 Unauthenticated RCE
Due to an issue in configuration, code that was intended for debugging purposes was included in the market release of the ASPECT FW allowing an attacker to bypass authentication. This vulnerability may allow an attacker to change the system time, access files, and make function calls without prio...
CVE-2025-53187 Unauthenticated RCE
Due to an issue in configuration, code that was intended for debugging purposes was included in the market release of the ASPECT FW allowing an attacker to bypass authentication. This vulnerability may allow an attacker to change the system time, access files, and make function calls without prio...
CVE-2025-53187
CVE-2025-53187 affects ABB ASPECT FW; root cause is debugging code included in the market release, enabling authentication bypass. Impact includes unauthenticated actions such as changing system time, accessing files, and invoking functions, potentially leading to unauthenticated RCE. All ASPECT ...