CRITICAL🇵🇱 Wersja polska

CVE-2021-22279

CVSS 9.8v3.1pub. 2021-12-13upd. 2024-11-21

A Missing Authentication vulnerability in RobotWare for the OmniCore robot controller allows an attacker to read and modify files on the robot controller if the attacker has access to the Connected Services Gateway Ethernet port.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Abb Omnicore C30

    HW
    Abb
    wszystkie wersje
  • Abb Omnicore C30 Firmware

    OS
    Abb
    < 7.3.2
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2024-1913HIGH7.6ten sam produkt

An attacker who successfully exploited these vulnerabilities could cause the robot to stop, make the robot co...

CVE-2024-1914MEDIUM6.5ten sam produkt

An attacker who successfully exploited these vulnerabilities could cause the robot to stop, make the robot con...

CVE-2024-51547CRITICAL9.3PL ✓ten sam vendor

Zakodowane na stałe dane uwierzytelniające w urządzeniach ABB ASPECT/NEXUS/MATRIX

CVE-2024-48839CRITICAL9.3PL ✓ten sam vendor

RCE poprzez nieprawidłową walidację danych wejściowych w ABB ASPECT/NEXUS/MATRIX

CVE-2024-11317CRITICAL9.3PL ✓ten sam vendor

Session Fixation w ABB ASPECT i NEXUS/MATRIX Series — przejęcie sesji użytkownika