16 matches found
CVE-2022-26080
Use of Insufficiently Random Values vulnerability in ABB Pulsar Plus System Controller NE843S, ABB Infinity DC Power Plant.This issue affects Pulsar Plus System Controller NE843S : comcode 150042936; Infinity DC Power Plant: H5692448 G104 G842 G224L G630-4 G451C2 G4612 – comcode 150047415...
EUVD-2022-24896
Malicious code in bioql PyPI...
EUVD-2022-30648
Malicious code in bioql PyPI...
The vulnerability of the software and hardware components of SCADA systems, such as the ABB Pulsar Plus System Controller NE843_S, Infinity DC Power Plant H5692448 G104, Infinity DC Power Plant H5692448 G842, Infinity DC Power Plant H5692448 G224L, Infinity DC Power Plant H5692448 G630-4, Infinity DC Power Plant H5692448 G451C(2), Infinity DC Power Plant H5692448 G461(2), arises due to insufficient validation of input data. This vulnerability allows attackers to execute CSRF attacks.
The vulnerabilities of the software and hardware components of SCADA systems, such as ABB Pulsar Plus System Controller NE843S, Infinity DC Power Plant H5692448 G104, Infinity DC Power Plant H5692448 G842, Infinity DC Power Plant H5692448 G224L, Infinity DC Power Plant H5692448 G630-4, Infinity D...
ABB Pulsar Plus Controller
1. EXECUTIVE SUMMARY CVSS v3 6.3 ATTENTION: Exploitable remotely/low attack complexity Vendor: ABB Equipment: Pulsar Plus Controller Vulnerabilities: Use of Insufficiently Random Values, Cross-Site Request Forgery CSRF 2. RISK EVALUATION Successful exploitation of these vulnerabilities could...
Design/Logic Flaw
Use of Insufficiently Random Values vulnerability in ABB Pulsar Plus System Controller NE843S, ABB Infinity DC Power Plant.This issue affects Pulsar Plus System Controller NE843S : comcode 150042936; Infinity DC Power Plant: H5692448 G104 G842 G224L G630-4 G451C2 G4612 – comcode 150047415...
CVE-2022-26080 Easily guessable session ID's in NE843 Pulsar Plus Controller
Use of Insufficiently Random Values vulnerability in ABB Pulsar Plus System Controller NE843S, ABB Infinity DC Power Plant.This issue affects Pulsar Plus System Controller NE843S : comcode 150042936; Infinity DC Power Plant: H5692448 G104 G842 G224L G630-4 G451C2 G4612 – comcode 150047415...
CVE-2022-26080
CVE-2022-26080: Insufficiently random session IDs in ABB Pulsar Plus Controller NE843_S and Infinity DC Power Plant. Affected: Pulsar Plus System Controller NE843_S (comcode 150042936) and Infinity DC Power Plant (comcodes 150047415). Root cause: session IDs too short/incrementing and visible in ...
CVE-2022-26080 Easily guessable session ID's in NE843 Pulsar Plus Controller
Use of Insufficiently Random Values vulnerability in ABB Pulsar Plus System Controller NE843S, ABB Infinity DC Power Plant.This issue affects Pulsar Plus System Controller NE843S : comcode 150042936; Infinity DC Power Plant: H5692448 G104 G842 G224L G630-4 G451C2 G4612 – comcode 150047415...
PT-2023-2102 · Abb · Abb Infinity Dc Power Plant +1
Name of the Vulnerable Software and Affected Versions: ABB Pulsar Plus System Controller NE843 S ABB Infinity DC Power Plant H5692448 G104 ABB Infinity DC Power Plant H5692448 G842 ABB Infinity DC Power Plant H5692448 G224L ABB Infinity DC Power Plant H5692448 G630-4 ABB Infinity DC Power Plant...
CVE-2022-1607
Cross-Site Request Forgery CSRF vulnerability in ABB Pulsar Plus System Controller NE843S, ABB Infinity DC Power Plant allows Cross Site Request Forgery.This issue affects Pulsar Plus System Controller NE843S : comcode 150042936; Infinity DC Power Plant: H5692448 G104 G842 G224L G630-4 G451C2 G46...
CVE-2022-1607
Cross-Site Request Forgery CSRF vulnerability in ABB Pulsar Plus System Controller NE843S, ABB Infinity DC Power Plant allows Cross Site Request Forgery.This issue affects Pulsar Plus System Controller NE843S : comcode 150042936; Infinity DC Power Plant: H5692448 G104 G842 G224L G630-4 G451C2 G46...
Cross site request forgery (csrf)
Cross-Site Request Forgery CSRF vulnerability in ABB Pulsar Plus System Controller NE843S, ABB Infinity DC Power Plant allows Cross Site Request Forgery.This issue affects Pulsar Plus System Controller NE843S : comcode 150042936; Infinity DC Power Plant: H5692448 G104 G842 G224L G630-4 G451C2 G46...
CVE-2022-1607 Cross Site Scripting vulnerability in NE843 Pulsar Plus Controller
Cross-Site Request Forgery CSRF vulnerability in ABB Pulsar Plus System Controller NE843S, ABB Infinity DC Power Plant allows Cross Site Request Forgery.This issue affects Pulsar Plus System Controller NE843S : comcode 150042936; Infinity DC Power Plant: H5692448 G104 G842 G224L G630-4 G451C2 G46...
CVE-2022-1607 Cross Site Scripting vulnerability in NE843 Pulsar Plus Controller
Cross-Site Request Forgery CSRF vulnerability in ABB Pulsar Plus System Controller NE843S, ABB Infinity DC Power Plant allows Cross Site Request Forgery.This issue affects Pulsar Plus System Controller NE843S : comcode 150042936; Infinity DC Power Plant: H5692448 G104 G842 G224L G630-4 G451C2 G46...
PT-2023-3375 · Abb · Abb Infinity Dc Power Plant +1
Name of the Vulnerable Software and Affected Versions: ABB Pulsar Plus System Controller NE843 S version comcode 150042936 ABB Infinity DC Power Plant versions H5692448 G104, H5692448 G842, H5692448 G224L, H5692448 G630-4, H5692448 G451C2, H5692448 G4612 – comcode 150047415 Description: The issue...