CVE-2022-1607

Cross-Site Request Forgery (CSRF) vulnerability in ABB Pulsar Plus System Controller NE843_S, ABB Infinity DC Power Plant allows Cross Site Request Forgery.This issue affects Pulsar Plus System Controller NE843_S : comcode 150042936; Infinity DC Power Plant: H5692448 G104 G842 G224L G630-4 G451C(2) G461(2) – comcode 150047415.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:abb:infinity_dc_power_plant:*:*:*:*:*:*:*:*
cpe:2.3:a:abb:ne843_s:*:*:*:*:*:*:*:*

History

21 Nov 2024, 06:41

Type Values Removed Values Added
References () https://search.abb.com/library/Download.aspx?DocumentID=9AKK108467A6732&LanguageCode=en&DocumentPartId=&Action=Launch - Vendor Advisory () https://search.abb.com/library/Download.aspx?DocumentID=9AKK108467A6732&LanguageCode=en&DocumentPartId=&Action=Launch - Vendor Advisory
CVSS v2 : unknown
v3 : 8.8
v2 : unknown
v3 : 4.6

07 Nov 2023, 03:42

Type Values Removed Values Added
Summary Cross-Site Request Forgery (CSRF) vulnerability in ABB Pulsar Plus System Controller NE843_S, ABB Infinity DC Power Plant allows Cross Site Request Forgery.This issue affects Pulsar Plus System Controller NE843_S : comcode 150042936; Infinity DC Power Plant: H5692448 G104 G842 G224L G630-4 G451C(2) G461(2) – comcode 150047415. Cross-Site Request Forgery (CSRF) vulnerability in ABB Pulsar Plus System Controller NE843_S, ABB Infinity DC Power Plant allows Cross Site Request Forgery.This issue affects Pulsar Plus System Controller NE843_S : comcode 150042936; Infinity DC Power Plant: H5692448 G104 G842 G224L G630-4 G451C(2) G461(2) – comcode 150047415.

Information

Published : 2023-02-24 05:15

Updated : 2024-11-21 06:41


NVD link : CVE-2022-1607

Mitre link : CVE-2022-1607

CVE.ORG link : CVE-2022-1607


JSON object : View

Products Affected

abb

  • infinity_dc_power_plant
  • ne843_s
CWE
CWE-352

Cross-Site Request Forgery (CSRF)