Improper Input Validation vulnerability in ABB AC500 V2 PM5xx allows Client-Server Protocol Manipulation.This issue affects AC500 V2: from 2.0.0 before 2.8.6.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:LAbb Ac500 Cpu Firmware
OSAbb2.0.0 – 2.8.6 (bez)Abb Pm5630 2eth
HWAbb2.0Abb Pm5650 2eth
HWAbb2.0Abb Pm5670 2eth
HWAbb2.0Abb Pm5675 2eth
HWAbb2.0Abb Pm571 Eth V14x
HWAbb2.0Abb Pm571 V14x
HWAbb2.0Abb Pm572
HWAbb2.0Abb Pm573 Eth
HWAbb2.0Abb Pm581 Eth V14x
HWAbb2.0Abb Pm581 V14x
HWAbb2.0Abb Pm582
HWAbb2.0Abb Pm582 Arcnet
HWAbb2.0Abb Pm582 Eth
HWAbb2.0Abb Pm582 V14x
HWAbb2.0Abb Pm583 Eth
HWAbb2.0Abb Pm585 Eth
HWAbb2.0Abb Pm585 Mc Kit
HWAbb2.0Abb Pm590 Arcnet V14x
HWAbb2.0Abb Pm590 Eth
HWAbb2.0Abb Pm590 Eth V14x
HWAbb2.0Abb Pm590 Mc Kit
HWAbb2.0Abb Pm590 V14x
HWAbb2.0Abb Pm591 2eth
HWAbb2.0Abb Pm591 Arcnet V14x
HWAbb2.0Abb Pm591 Eth
HWAbb2.0Abb Pm591 Eth V14x
HWAbb2.0Abb Pm591 V14x
HWAbb2.0Abb Pm592 Eth
HWAbb2.0Abb Pm595 4eth F
HWAbb2.0
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Related vulnerabilities
CVE-2020-24686HIGH7.5ten sam produkt
The vulnerabilities can be exploited to cause the web visualization component of the PLC to stop and not respo...
CVE-2020-24685HIGH8.6ten sam produkt
An unauthenticated specially crafted packet sent by an attacker over the network will cause a denial-of-servic...
CVE-2024-51547CRITICAL9.3PL ✓ten sam vendor
Zakodowane na stałe dane uwierzytelniające w urządzeniach ABB ASPECT/NEXUS/MATRIX
CVE-2024-11317CRITICAL9.3PL ✓ten sam vendor
Session Fixation w ABB ASPECT i NEXUS/MATRIX Series — przejęcie sesji użytkownika
CVE-2024-48839CRITICAL9.3PL ✓ten sam vendor
RCE poprzez nieprawidłową walidację danych wejściowych w ABB ASPECT/NEXUS/MATRIX