Aspect-ent-2 Firmware Security Vulnerabilities and Issues — Aspect-ent-2 Firmware CVE List

Lucene search

AbbAspect-ent-2 Firmware

10 matches found

CVE•added 2025/02/06 5:15 a.m.•72 views

CVE-2024-51547

Use of Hard-coded Credentials vulnerability in ABB ASPECT-Enterprise, ABB NEXUS Series, ABB MATRIX Series.This issue affects ASPECT-Enterprise: through 3.; NEXUS Series: through 3. ; MATRIX Series: through 3.*.

9.8CVSS9.6AI score0.00097EPSS

CVE•added 2024/12/05 1:15 p.m.•68 views

CVE-2024-48845

Weak Password Reset Rules vulnerabilities where found providing a potiential for the storage of weak passwords that could facilitate unauthorized admin/application access. Affected products: ABB ASPECT - Enterprise v3.07.02;NEXUS Series v3.07.02;MATRIX Series v3.07.02

9.8CVSS9.4AI score0.02293EPSS

CVE•added 2024/12/05 1:15 p.m.•67 views

CVE-2024-48847

MD5 Checksum Bypass vulnerabilities where found exploiting a weakness in the way an application dependency calculates or validates MD5 checksum hashes. Affected products: ABB ASPECT - Enterprise v3.08.01;NEXUS Series v3.08.01;MATRIX Series v3.08.01

9.1CVSS8.4AI score0.00047EPSS

CVE•added 2024/12/05 1:15 p.m.•62 views

CVE-2024-6516

Cross Site Scripting vulnerabilities where found providing a potential for malicious scripts to be injected into a client browser. Affected products: ABB ASPECT - Enterprise v3.08.02;NEXUS Series v3.08.02;MATRIX Series v3.08.02

9.3CVSS9AI score0.01005EPSS

CVE•added 2024/12/05 1:15 p.m.•60 views

CVE-2024-6784

Server-Side Request Forgery vulnerabilities were found providing a potential for access to unauthorized resources and unintended information disclosure. Affected products: ABB ASPECT - Enterprise v3.08.02;NEXUS Series v3.08.02;MATRIX Series v3.08.02

9.9CVSS9.7AI score0.00128EPSS

CVE•added 2023/06/05 4:15 a.m.•55 views

CVE-2023-0635

Improper Privilege Management vulnerability in ABB Ltd. ASPECT®-Enterprise on ASPECT®-Enterprise, Linux (2CQG103201S3021, 2CQG103202S3021, 2CQG103203S3021, 2CQG103204S3021 modules), ABB Ltd. NEXUS Series on NEXUS Series, Linux (2CQG100102R2021, 2CQG100104R2021, 2CQG100105R2021, 2CQG100106R2021, 2CQ...

9.8CVSS8.8AI score0.00117EPSS

CVE•added 2024/12/05 1:15 p.m.•54 views

CVE-2024-51548

Dangerous File Upload vulnerabilities allow upload of malicious scripts. Affected products: ABB ASPECT - Enterprise v3.08.02;NEXUS Series v3.08.02;MATRIX Series v3.08.02

9.9CVSS9.7AI score0.00133EPSS

CVE•added 2024/12/05 1:15 p.m.•54 views

CVE-2024-6515

Web browser interface may manipulate application username/password in clear text or Base64 encoding providing a higher probability of unintended credentails exposure. Affected products: ABB ASPECT - Enterprise v3.08.02;NEXUS Series v3.08.02;MATRIX Series v3.08.02

9.6CVSS9.3AI score0.0005EPSS

CVE•added 2024/12/05 1:15 p.m.•50 views

CVE-2024-51554

Default Credentail vulnerabilities in ASPECT on Linux allows access to the product using publicly available default credentials. Affected products: ABB ASPECT - Enterprise v3.08.02;NEXUS Series v3.08.02;MATRIX Series v3.08.02

9.8CVSS9.3AI score0.00162EPSS

CVE•added 2023/06/05 4:15 a.m.•39 views

CVE-2023-0636

Improper Input Validation vulnerability in ABB Ltd. ASPECT®-Enterprise on ASPECT®-Enterprise, Linux (2CQG103201S3021, 2CQG103202S3021, 2CQG103203S3021, 2CQG103204S3021 modules), ABB Ltd. NEXUS Series on NEXUS Series, Linux (2CQG100102R2021, 2CQG100104R2021, 2CQG100105R2021, 2CQG100106R2021, 2CQG100...

9.8CVSS8.4AI score0.00123EPSS