71 matches found
CVE-2020-8472 ABB System 800xA Weak File Permissions - different products
Insufficient folder permissions used by system functions in ABB System 800xA products OPCServer for AC800M versions 6.0 and earlier and Control Builder M Professional, MMSServer for AC800M, Base Software for SoftControl version 6.1 and earlier allow low privileged users to read, modify, add and...
ABB System 800xA Base License Issue Vulnerability
ABB System 800xA Base is a distributed control system from ABB Switzerland for the industrial control industry. An authorization issue vulnerability exists in ABB System 800xA Base. An attacker could use this vulnerability to read and modify registry settings related to control system...
CVE-2020-8474
Weak Registry permissions in ABB System 800xA Base allow low privileged users to read and modify registry settings related to control system functionality, allowing an authenticated attacker to cause system functions to stop or malfunction...
CVE-2020-8477
The installations for ABB System 800xA Information Manager versions 5.1, 6.0 to 6.0.3.2 and 6.1 wrongly contain an auxiliary component. An attacker is able to use this for an XSS-like attack to an authenticated local user, which might lead to execution of arbitrary code...
CVE-2020-8477
The installations for ABB System 800xA Information Manager versions 5.1, 6.0 to 6.0.3.2 and 6.1 wrongly contain an auxiliary component. An attacker is able to use this for an XSS-like attack to an authenticated local user, which might lead to execution of arbitrary code...
CVE-2020-8474
Weak Registry permissions in ABB System 800xA Base allow low privileged users to read and modify registry settings related to control system functionality, allowing an authenticated attacker to cause system functions to stop or malfunction...
Design/Logic Flaw
Weak Registry permissions in ABB System 800xA Base allow low privileged users to read and modify registry settings related to control system functionality, allowing an authenticated attacker to cause system functions to stop or malfunction...
Cross site scripting
The installations for ABB System 800xA Information Manager versions 5.1, 6.0 to 6.0.3.2 and 6.1 wrongly contain an auxiliary component. An attacker is able to use this for an XSS-like attack to an authenticated local user, which might lead to execution of arbitrary code...
CVE-2020-8477
CVE-2020-8477 affects ABB System 800xA Information Manager (versions 5.1, 6.0–6.0.3.2, and 6.1). The flaw is in an auxiliary component incorporated into installations, enabling an XSS-like attack that could lead to arbitrary code execution on an authenticated local user. Technical details from mu...
CVE-2020-8474
CVE-2020-8474 concerns ABB System 800xA Base, where an incorrect permission assignment allows low-privilege users to read/modify registry settings that control system functionality. The vulnerability can be exploited by an authenticated user with local access to cause system functions to stop or ...
CVE-2020-8474 ABB System 800xA Weak Registry Permissions
Weak Registry permissions in ABB System 800xA Base allow low privileged users to read and modify registry settings related to control system functionality, allowing an authenticated attacker to cause system functions to stop or malfunction...