CVE-2020-8485

Insufficient protection of the inter-process communication functions in ABB System 800xA for MOD 300 (all published versions) enables an attacker authenticated on the local system to inject data, allowing reads and writes to the controllers or cause windows processes to crash.
Configurations

Configuration 1 (hide)

cpe:2.3:a:abb:800xa:*:*:*:*:*:*:mod_300:*

History

21 Nov 2024, 05:38

Type Values Removed Values Added
References () https://search.abb.com/library/Download.aspx?DocumentID=2PAA121236&LanguageCode=en&DocumentPartId=&Action=Launch - Vendor Advisory () https://search.abb.com/library/Download.aspx?DocumentID=2PAA121236&LanguageCode=en&DocumentPartId=&Action=Launch - Vendor Advisory

Information

Published : 2020-04-29 02:15

Updated : 2024-11-21 05:38


NVD link : CVE-2020-8485

Mitre link : CVE-2020-8485

CVE.ORG link : CVE-2020-8485


JSON object : View

Products Affected

abb

  • 800xa
CWE
CWE-264

Permissions, Privileges, and Access Controls

NVD-CWE-Other