CVE-2022-0947

A vulnerability in ABB ARG600 Wireless Gateway series that could allow an attacker to exploit the vulnerability by remotely connecting to the serial port gateway, and/or protocol converter, depending on the configuration.

CVSS v3 9.0 CRITICAL
CVSS v2.0 6.8 MEDIUM

9.0^/10

CVSS v3 : CRITICAL

V3 Legend

Vector :

Exploitability : 2.3 / Impact : 6.0

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction REQUIRED

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope CHANGED

6.8^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:M/Au:N/C:P/I:P/A:P

Exploitability : 8.6 / Impact : 6.4

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
https://search.abb.com/library/Download.aspx?DocumentID=2NGA001253&LanguageCode=en&DocumentPartId=&Action=Launch	Mitigation Vendor Advisory
https://search.abb.com/library/Download.aspx?DocumentID=2NGA001253&LanguageCode=en&DocumentPartId=&Action=Launch	Mitigation Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:abb:arg600a1220na_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:abb:arg600a1220na:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:o:abb:arg600a1230na_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:abb:arg600a1230na:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND

cpe:2.3:o:abb:arg600a1240na_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:abb:arg600a1240na:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND

cpe:2.3:o:abb:arg600a1260na_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:abb:arg600a1260na:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND

cpe:2.3:o:abb:arg600a2622na_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:abb:arg600a2622na:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND

cpe:2.3:o:abb:arg600a2625na_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:abb:arg600a2625na:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND

cpe:2.3:o:abb:arp600a2200na_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:abb:arp600a2200na:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND

cpe:2.3:o:abb:arp600a2220na_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:abb:arp600a2220na:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND

cpe:2.3:o:abb:arp600a2250na_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:abb:arp600a2250na:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND

cpe:2.3:o:abb:arp600a2260na_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:abb:arp600a2260na:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND

cpe:2.3:o:abb:arp600a2651na_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:abb:arp600a2651na:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND

cpe:2.3:o:abb:arp600a2560na_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:abb:arp600a2560na:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND

cpe:2.3:o:abb:arr600a3201na_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:abb:arr600a3201na:-:*:*:*:*:*:*:*

Configuration 14 (hide)

AND

cpe:2.3:o:abb:arr600a3202na_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:abb:arr600a3202na:-:*:*:*:*:*:*:*

Configuration 15 (hide)

AND

cpe:2.3:o:abb:arr600a3221na_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:abb:arr600a3221na:-:*:*:*:*:*:*:*

Configuration 16 (hide)

AND

cpe:2.3:o:abb:arr600a3222na_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:abb:arr600a3222na:-:*:*:*:*:*:*:*

Configuration 17 (hide)

AND

cpe:2.3:o:abb:arr600a3251na_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:abb:arr600a3251na:-:*:*:*:*:*:*:*

Configuration 18 (hide)

AND

cpe:2.3:o:abb:arr600a3252na_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:abb:arr600a3252na:-:*:*:*:*:*:*:*

Configuration 19 (hide)

AND

cpe:2.3:o:abb:arr600a3261na_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:abb:arr600a3261na:-:*:*:*:*:*:*:*

Configuration 20 (hide)

AND

cpe:2.3:o:abb:arr600a3262na_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:abb:arr600a3262na:-:*:*:*:*:*:*:*

Configuration 21 (hide)

AND

cpe:2.3:o:abb:arc600a2325na_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:abb:arc600a2325na:-:*:*:*:*:*:*:*

Configuration 22 (hide)

AND

cpe:2.3:o:abb:arc600a2323na_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:abb:arc600a2323na:-:*:*:*:*:*:*:*

Configuration 23 (hide)

AND

cpe:2.3:o:abb:arc600a2324na_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:abb:arc600a2324na:-:*:*:*:*:*:*:*

Configuration 24 (hide)

AND

cpe:2.3:o:abb:viola_systems_arctic_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:abb:viola_systems_arctic:-:*:*:*:*:*:*:*

History

21 Nov 2024, 06:39

Type	Values Removed	Values Added
CVSS	v2 : ~~6.8~~ v3 : ~~9.8~~	v2 : 6.8 v3 : 9.0
References	~~() https://search.abb.com/library/Download.aspx?DocumentID=2NGA001253&LanguageCode=en&DocumentPartId=&Action=Launch - Mitigation, Vendor Advisory~~	() https://search.abb.com/library/Download.aspx?DocumentID=2NGA001253&LanguageCode=en&DocumentPartId=&Action=Launch - Mitigation, Vendor Advisory

Information

Published : 2022-05-10 19:15

Updated : 2024-11-21 06:39

NVD link : CVE-2022-0947

Mitre link : CVE-2022-0947

CVE.ORG link : CVE-2022-0947

JSON object : View

Products Affected

abb

arr600a3201na_firmware
arr600a3202na_firmware
arg600a1240na_firmware
arg600a2622na
arp600a2250na_firmware
arp600a2220na_firmware
arp600a2250na
arp600a2260na_firmware
arr600a3221na_firmware
arp600a2560na_firmware
arr600a3261na
arg600a2625na_firmware
arg600a1220na_firmware
arp600a2200na_firmware
viola_systems_arctic_firmware
arr600a3251na_firmware
arp600a2220na
arg600a2622na_firmware
arg600a1230na
arp600a2560na
arr600a3251na
arp600a2260na
arr600a3262na_firmware
arg600a1220na
arr600a3252na
arc600a2323na_firmware
arc600a2323na
arc600a2324na_firmware
arr600a3252na_firmware
arc600a2325na_firmware
arg600a1230na_firmware
arp600a2200na
arr600a3201na
arr600a3221na
arr600a3222na
arr600a3261na_firmware
arp600a2651na
arp600a2651na_firmware
arr600a3222na_firmware
viola_systems_arctic
arg600a1260na
arr600a3202na
arc600a2325na
arc600a2324na
arg600a1260na_firmware
arg600a2625na
arg600a1240na
arr600a3262na

CWE

CWE-665

Improper Initialization

9.0 /10