3 matches found
ABB Multiple System 800xA Products Incorrect Default Permissions (CVE-2020-8486)
Insufficient protection of the inter-process communication functions in ABB System 800xA RNRP all published versions enables an attacker authenticated on the local system to inject data, affect node redundancy handling. This plugin only works with Tenable.ot. Please visit...
ABB Multiple System 800xA Products
1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low skill level to exploit Vendor: ABB Equipment: System 800xA Vulnerabilities: Incorrect Default Permissions 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to make the system node inaccessible or tamper with...
CVE-2020-8486
The CVE-2020-8486 entry concerns ABB System 800xA RNRP (and related 800xA components) with insufficient protection of inter-process communication. The vulnerability arises from weak access control in IPC objects exchanged between System 800xA processes on the same machine, allowing an authenticat...