Lucene search
+L

67 matches found

CVE
CVE
added 2020/12/22 9:15 p.m.73 views

CVE-2020-24676

The CVE-2020-24676 entry affects Symphony Plus Operations and Symphony Plus Historian : unprivileged but authenticated users can leverage vulnerable services to achieve arbitrary code execution with privilege escalation, depending on the account the service runs under. The documented impact is pr...

7.8CVSS8AI score0.00411EPSS
Exploits0References2Affected Software2
Cvelist
Cvelist
added 2020/12/22 9:15 p.m.25 views

CVE-2020-24676 Insecure Windows Services in Symphony Plus

In Symphony Plus Operations and Symphony Plus Historian, some services can be vulnerable to privilege escalation attacks. An unprivileged but authenticated user could execute arbitrary code and result in privilege escalation, depending on the user that the service runs as...

7.8CVSS8AI score0.00411EPSS
Exploits0References2
Cvelist
Cvelist
added 2020/12/22 9:13 p.m.26 views

CVE-2020-24678 Potential Privilege Escalation in Symphony Plus

An authenticated user might execute malicious code under the user context and take control of the system. S+ Operations or S+ Historian database is affected by multiple vulnerabilities such as the possibility to allow remote authenticated users to gain high privileges...

8.8CVSS9.1AI score0.01504EPSS
Exploits0References2
CNNVD
CNNVD
added 2020/12/22 12:0 a.m.13 views

ABB Symphony Plus Operations Access Control Error Vulnerability

ABB Symphony Plus Operations is a management device from ABB Switzerland for improving operational efficiency in industrial environments. The appliance provides an easy-to-use human-machine interface that seamlessly integrates all plant equipment and subsystems using industry-standard protocols a...

9.8CVSS7.3AI score0.01461EPSS
Exploits0References2
CNNVD
CNNVD
added 2020/12/22 12:0 a.m.7 views

ABB Symphony Plus Operations and ABB Symphony Plus Historian SQL Injection Vulnerabilities

ABB Symphony Plus Operations and ABB Symphony Plus Historian are both products of ABB Switzerland.ABB Symphony Plus Operations is a management device used in industrial environments to improve operational efficiency. The device provides an easy-to-use human-machine interface that seamlessly...

9.8CVSS7.4AI score0.01084EPSS
Exploits0References3
CNNVD
CNNVD
added 2020/12/22 12:0 a.m.6 views

ABB Symphony Plus Operations and ABB Symphony Plus Historian Authorization Issues Vulnerability

ABB Symphony Plus Operations and ABB Symphony Plus Historian are both products of ABB Switzerland.ABB Symphony Plus Operations is a management device used in industrial environments to improve operational efficiency. The device provides an easy-to-use human-machine interface that seamlessly...

7.8CVSS7.4AI score0.00411EPSS
Exploits0References3
CNNVD
CNNVD
added 2020/12/22 12:0 a.m.6 views

ABB Symphony Plus Operations and ABB Symphony Plus Historian Trust Management Issue Vulnerabilities

ABB Symphony Plus Operations and ABB Symphony Plus Historian are both products of ABB Switzerland.ABB Symphony Plus Operations is a management device used in industrial environments to improve operational efficiency. The device provides an easy-to-use human-machine interface that seamlessly...

7CVSS7.1AI score0.00274EPSS
Exploits0References3
CNNVD
CNNVD
added 2020/12/22 12:0 a.m.7 views

ABB Symphony Plus Operations and ABB Symphony Plus Historian Authorization Issues Vulnerability

ABB Symphony Plus Operations and ABB Symphony Plus Historian are both products of ABB Switzerland.ABB Symphony Plus Operations is a management device used in industrial environments to improve operational efficiency. The device provides an easy-to-use human-machine interface that seamlessly...

8.8CVSS7.5AI score0.01504EPSS
Exploits0References3
CNNVD
CNNVD
added 2020/12/22 12:0 a.m.7 views

ABB Symphony Plus Operations and ABB Symphony Plus Historian Input Validation Error Vulnerability

ABB Symphony Plus Operations and ABB Symphony Plus Historian are both products of ABB Switzerland.ABB Symphony Plus Operations is a management device used in industrial environments to improve operational efficiency. The device provides an easy-to-use human-machine interface that seamlessly...

10CVSS7.6AI score0.01807EPSS
Exploits0References3
CNNVD
CNNVD
added 2020/12/22 12:0 a.m.7 views

ABB Symphony Plus Operations and ABB Symphony Plus Historian Authorization Issues Vulnerability

ABB Symphony Plus Operations and ABB Symphony Plus Historian are both products of ABB Switzerland.ABB Symphony Plus Operations is a management device used in industrial environments to improve operational efficiency. The device provides an easy-to-use human-machine interface that seamlessly...

9.8CVSS7.3AI score0.01192EPSS
Exploits0References3
CNNVD
CNNVD
added 2020/12/22 12:0 a.m.7 views

ABB Symphony Plus Operations and ABB Symphony Plus Historian Code Issue Vulnerabilities

ABB Symphony Plus Operations and ABB Symphony Plus Historian are both products of ABB Switzerland.ABB Symphony Plus Operations is a management device used in industrial environments to improve operational efficiency. The device provides an easy-to-use human-machine interface that seamlessly...

8.8CVSS7.6AI score0.01387EPSS
Exploits0References3
CNNVD
CNNVD
added 2020/12/22 12:0 a.m.6 views

ABB Symphony Plus Operations and ABB Symphony Plus Historian Authorization Issues Vulnerability

ABB Symphony Plus Operations and ABB Symphony Plus Historian are both products of ABB Switzerland.ABB Symphony Plus Operations is a management device used in industrial environments to improve operational efficiency. The device provides an easy-to-use human-machine interface that seamlessly...

9CVSS7.5AI score0.02977EPSS
Exploits0References3
NVD
NVD
added 2020/04/29 2:15 a.m.46 views

CVE-2020-8481

For ABB products ABB Ability™ System 800xA and related system extensions versions 5.1, 6.0 and 6.1, Compact HMI versions 5.1 and 6.0, Control Builder Safe 1.0, 1.1 and 2.0, Symphony Plus -S+ Operations 3.0 to 3.2 Symphony Plus -S+ Engineering 1.1 to 2.2, Composer Harmony 5.1, 6.0 and 6.1, Melody...

10CVSS9.4AI score0.0181EPSS
Exploits0References2
NVD
NVD
added 2020/04/29 2:15 a.m.37 views

CVE-2020-8475

For the Central Licensing Server component used in ABB products ABB Ability™ System 800xA and related system extensions versions 5.1, 6.0 and 6.1, Compact HMI versions 5.1 and 6.0, Control Builder Safe 1.0, 1.1 and 2.0, Symphony Plus -S+ Operations 3.0 to 3.2 Symphony Plus -S+ Engineering 1.1 to...

7.5CVSS6.1AI score0.01125EPSS
Exploits0References3
Prion
Prion
added 2020/04/29 2:15 a.m.33 views

Code injection

For the Central Licensing Server component used in ABB products ABB Ability™ System 800xA and related system extensions versions 5.1, 6.0 and 6.1, Compact HMI versions 5.1 and 6.0, Control Builder Safe 1.0, 1.1 and 2.0, Symphony Plus -S+ Operations 3.0 to 3.2 Symphony Plus -S+ Engineering 1.1 to...

4.6CVSS8.4AI score0.00355EPSS
Exploits0References3Affected Software3
CVE
CVE
added 2020/04/29 1:30 a.m.108 views

CVE-2020-8481

CVE-2020-8481 concerns ABB Ability System 800xA and related ABB CLS/OLC ecosystem components. The root cause is confidential data written in an unprotected file, enabling an attacker to read sensitive data and potentially take full control of the affected node. Reported affected products span mul...

10CVSS9.3AI score0.0181EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/04/29 1:30 a.m.56 views

CVE-2020-8481 ABB Central Licensing System - Information disclosure

For ABB products ABB Ability™ System 800xA and related system extensions versions 5.1, 6.0 and 6.1, Compact HMI versions 5.1 and 6.0, Control Builder Safe 1.0, 1.1 and 2.0, Symphony Plus -S+ Operations 3.0 to 3.2 Symphony Plus -S+ Engineering 1.1 to 2.2, Composer Harmony 5.1, 6.0 and 6.1, Melody...

9.8CVSS9.3AI score0.0181EPSS
Exploits0References2
CVE
CVE
added 2020/04/29 1:30 a.m.120 views

CVE-2020-8471

CVE-2020-8471 affects ABB Central Licensing System (CLS) across multiple ABB products (800xA, Compact HMI, Symphony Plus, Harmony/Melody components, Knowledge Manager, etc.). The root issue is weak file permissions on the CLS, allowing an authenticated attacker to block license handling, escalate...

7.8CVSS8AI score0.00355EPSS
Exploits0References3Affected Software3
Cvelist
Cvelist
added 2020/04/29 1:30 a.m.51 views

CVE-2020-8471 ABB Central Licensing System - Weak File Permissions

For the Central Licensing Server component used in ABB products ABB Ability™ System 800xA and related system extensions versions 5.1, 6.0 and 6.1, Compact HMI versions 5.1 and 6.0, Control Builder Safe 1.0, 1.1 and 2.0, Symphony Plus -S+ Operations 3.0 to 3.2 Symphony Plus -S+ Engineering 1.1 to...

7.8CVSS7.8AI score0.00355EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2020/04/29 12:0 a.m.9 views

PT-2020-20164 · Abb · Compact Hmi +17

Name of the Vulnerable Software and Affected Versions: ABB Ability System 800xA versions 5.1 through 6.1 Compact HMI versions 5.1 through 6.0 Control Builder Safe versions 1.0 through 2.0 Symphony Plus -S+ Operations versions 3.0 through 3.2 Symphony Plus -S+ Engineering versions 1.1 through 2.2...

9.8CVSS9.3AI score0.02203EPSS
Exploits0References5
Rows per page
Query Builder