Lucene search
K

860 matches found

CNVD
CNVD
added 2025/06/17 12:0 a.m.2 views

Various ABB products information leakage vulnerability

ABB ASPECT-Enterprise is a scalable building energy management and control solution.ABB NEXUS Series is a monitoring and control management system.ABB MATRIX Series is an embedded IoT ASPECT control engine designed to provide flexible field control for medium to large field control applications. ...

6.9CVSS6.4AI score0.00298EPSS
Exploits0References1
CNVD
CNVD
added 2025/06/17 12:0 a.m.2 views

Cross-site scripting vulnerability in various ABB products (CNVD-2025-13777)

ABB ASPECT-Enterprise is a scalable building energy management and control solution.ABB NEXUS Series is a monitoring and control management system.ABB MATRIX Series is an embedded IoT ASPECT control engine designed to provide flexible field control for medium to large field control applications. ...

4.8CVSS6.4AI score0.00186EPSS
Exploits0References1
CNVD
CNVD
added 2025/06/17 12:0 a.m.15 views

Various ABB products predict filename vulnerability

ABB ASPECT and others are products of ABB Switzerland.ABB ASPECT is a scalable building energy management and control solution.ABB MATRIX is an embedded building automation network controller.ABB NEXUS is a wireless and wired solution. Various ABB products have a predicted filename vulnerability...

9.5CVSS6.9AI score0.00337EPSS
Exploits0References1
CNVD
CNVD
added 2025/06/17 12:0 a.m.2 views

SQL Injection Vulnerabilities in Various ABB Products

ABB ASPECT-Enterprise is a scalable building energy management and control solution.ABB NEXUS Series is a monitoring and control management system.ABB MATRIX Series is an embedded IoT ASPECT control engine designed to provide flexible field control for medium to large field control applications. ...

9.4CVSS7.7AI score0.00311EPSS
Exploits0References1
CNVD
CNVD
added 2025/06/17 12:0 a.m.3 views

Weak Password Storage Vulnerability in Various ABB Products

ABB ASPECT is a scalable building energy management and control solution.ABB MATRIX is an embedded building automation network controller.ABB NEXUS is a wireless and wired solution. A weak password storage vulnerability exists in several ABB products, which can be exploited by an attacker to caus...

9.5CVSS7.1AI score0.00337EPSS
Exploits0References1
CNVD
CNVD
added 2025/06/17 12:0 a.m.2 views

Denial of Service Vulnerability in Various ABB Products

ABB ASPECT and others are products of ABB Switzerland.ABB ASPECT is a scalable building energy management and control solution.ABB MATRIX is an embedded building automation network controller.ABB NEXUS is a wireless and wired solution. A denial-of-service vulnerability exists in various ABB...

9.5CVSS7AI score0.00337EPSS
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/06/12 2:11 p.m.2 views

Malicious code in dojo.aspect (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d31fd63b97c3cdde47f88984fbd8825829cf78c16098685c438206151cbc31f2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
Exploit DB
Exploit DB
added 2025/06/05 12:0 a.m.234 views

ABB Cylon Aspect 3.08.04 DeploySource - Remote Code Execution (RCE)

ABB Cylon Aspect 3.08.04 DeploySource - Remote Code Execution RCE Vendor: ABB Ltd. Product web page: https://www.global.abb Affected version: NEXUS Series, MATRIX-2 Series, ASPECT-Enterprise, ASPECT-Studio Firmware: =3.08.04 Summary: ASPECT is an award-winning scalable building energy management...

7.4AI score
Exploits0
Zero Science Lab
Zero Science Lab
added 2025/06/04 12:0 a.m.226 views

ABB Cylon Aspect 3.08.04 (DeploySource) Unauthenticated Remote Code Execution

Summary ASPECT is an award-winning scalable building energy management and control solution designed to allow users seamless access to their building data through standard building protocols including smart devices. Description ABB Cylon Aspect BMS/BAS is vulnerable to a critical flaw in the...

6.1AI score
Exploits0
OSV
OSV
added 2025/05/29 1:9 a.m.2 views

MINI-JVQ7-6X69-C7R8

Bulletin has no description...

4.9CVSS7.2AI score0.00605EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2025/05/26 12:0 a.m.11 views

The vulnerability of the configuration @EnableMethodSecurity(mode=ASPECTJ) or spring-security-aspects in the Java framework for securing Spring-based industrial applications allows attackers to bypass the authentication process.

The vulnerability of the @EnableMethodSecurity'mode=ASPECTJ configuration or the spring-security-aspects Java framework for securing Spring-based industrial applications is related to a flaw in the data protection mechanism. Exploiting this vulnerability could allow an attacker to bypass...

9.4CVSS7.1AI score0.00535EPSS
Exploits0References3Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/25 10:16 a.m.17 views

CVE-2024-13945

Stored Absolute Path Traversal vulnerabilities in ASPECT could expose sensitive data if administrator credentials become compromised. This issue affects ASPECT-Enterprise: through 3.; NEXUS Series: through 3.; MATRIX Series: through 3...

8.4CVSS6.8AI score0.00352EPSS
Exploits0References1
Exploit DB
Exploit DB
added 2025/05/25 12:0 a.m.307 views

ABB Cylon Aspect Studio 3.08.03 - Binary Planting

Exploit Title: ABB Cylon Aspect Studio 3.08.03 - Binary Planting Vendor: ABB Ltd. Product web page: https://www.global.abb Affected version: type project P R O J E C T .| | | |'| . | | |. |' .---"| .-' '-. | | .--'| || | | | .-'| .| | || '- | | | || | |' | |. | || | | | | || | | '-' ' "" '-' '-.'...

7.1CVSS7.1AI score0.00977EPSS
Exploits3
RedhatCVE
RedhatCVE
added 2025/05/24 7:12 p.m.8 views

CVE-2024-51552

Weak password storage vulnerabilities exist in ASPECT if administrator credentials become compromisedThis issue affects ASPECT-Enterprise: through 3.; NEXUS Series: through 3.; MATRIX Series: through 3...

7.1CVSS7.3AI score0.00258EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/24 7:12 p.m.13 views

CVE-2024-13951

One way hash with predictable salt vulnerabilities in ASPECT may expose sensitive information to a potential attackerThis issue affects ASPECT-Enterprise: through 3.; NEXUS Series: through 3.; MATRIX Series: through 3...

7.6CVSS6.7AI score0.00167EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/24 7:12 p.m.14 views

CVE-2024-13953

Sensitive device logger information in ASPECT may be exposed if administrator credentials become compromisedThis issue affects ASPECT-Enterprise: through 3.; NEXUS Series: through 3.; MATRIX Series: through 3...

6.9CVSS6.7AI score0.00298EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/24 7:12 p.m.9 views

CVE-2024-51553

Predictable filename vulnerabilities in ASPECT may expose sensitive information to a potential attacker if administrator credentials become compromisedThis issue affects ASPECT-Enterprise: through 3.; NEXUS Series: through 3.; MATRIX Series: through 3...

7CVSS6.7AI score0.00285EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/24 7:11 p.m.9 views

CVE-2024-48848

Large content vulnerabilities are present in ASPECT exposing a device to disk overutilization on a system if administrator credentials become compromisedThis issue affects ASPECT-Enterprise: through 3.; NEXUS Series: through 3.; MATRIX Series: through 3...

7CVSS7AI score0.00306EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/24 7:11 p.m.12 views

CVE-2024-13952

Predictable filename vulnerabilities in ASPECT may expose sensitive information to a potential attacker if administrator credentials become compromisedThis issue affects ASPECT-Enterprise: through 3.; NEXUS Series: through 3.; MATRIX Series: through 3...

8.7CVSS6.7AI score0.0035EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/24 7:11 p.m.12 views

CVE-2024-13957

SSRF Server Side Request Forgery vulnerabilities exist in ASPECT if administrator credentials become compromisedThis issue affects ASPECT-Enterprise: through 3.; NEXUS Series: through 3.; MATRIX Series: through 3...

7.6CVSS7.2AI score0.00241EPSS
Exploits0References1
Rows per page
Query Builder