Lucene search
K
Abb800xa System

5 matches found

CVE
CVE
added 2020/04/29 12:0 a.m.130 views

CVE-2020-8479

CVE-2020-8479 is an XML External Entity Injection vulnerability in ABB Central Licensing Server components across ABB Ability System 800xA, Compact HMI, and related products. The issue allows an attacker to read or call arbitrary files from the license server and/or the network, and can also bloc...

9.8CVSS9.5AI score0.02203EPSS
CVE
CVE
added 2020/04/29 12:0 a.m.118 views

CVE-2020-8476

CVE-2020-8476 affects ABB CLS across ABB Ability System 800xA and related components, where a weakness in input validation in the Central Licensing Server allows an attacker to alter licenses assigned to system nodes. Reported impact is license manipulation (credentials/permissions could be misap...

7.5CVSS6AI score0.0151EPSS
CVE
CVE
added 2020/04/29 1:30 a.m.117 views

CVE-2020-8471

CVE-2020-8471 affects ABB Central Licensing System (CLS) across multiple ABB products (800xA, Compact HMI, Symphony Plus, Harmony/Melody components, Knowledge Manager, etc.). The root issue is weak file permissions on the CLS, allowing an authenticated attacker to block license handling, escalate...

7.8CVSS8AI score0.00355EPSS
CVE
CVE
added 2020/04/29 12:0 a.m.116 views

CVE-2020-8475

CVE-2020-8475 affects ABB Central Licensing System (CLS) in ABBAbility System 800xA and related components. Root cause: input validation weakness allows an attacker to block license handling (DoS) on CLS web service, potentially affecting availability of licensed nodes. Impact: partial availabili...

7.5CVSS6AI score0.01125EPSS
CVE
CVE
added 2020/04/29 1:30 a.m.106 views

CVE-2020-8481

CVE-2020-8481 concerns ABB Ability System 800xA and related ABB CLS/OLC ecosystem components. The root cause is confidential data written in an unprotected file, enabling an attacker to read sensitive data and potentially take full control of the affected node. Reported affected products span mul...

10CVSS9.3AI score0.0181EPSS