CVE-2023-0425

ABB is aware of vulnerabilities in the product versions listed below. An update is available that resolves the reported vulnerabilities in the product versions under maintenance. An attacker who successfully exploited one or more of these vulnerabilities could cause the product to stop or make the product inaccessible.  Numeric Range Comparison Without Minimum Check vulnerability in ABB Freelance controllers AC 700F (Controller modules), ABB Freelance controllers AC 900F (controller modules).This issue affects: Freelance controllers AC 700F:  from 9.0;0 through V9.2 SP2, through Freelance 2013, through Freelance 2013SP1, through Freelance 2016, through Freelance 2016SP1, through Freelance 2019, through Freelance 2019 SP1, through Freelance 2019 SP1 FP1;  Freelance controllers AC 900F:  Freelance 2013, through Freelance 2013SP1, through Freelance 2016, through Freelance 2016SP1, through Freelance 2019, through Freelance 2019 SP1, through Freelance 2019 SP1 FP1.
Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:o:abb:ac700f_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:abb:ac700f_firmware:9.2.0:-:*:*:*:*:*:*
cpe:2.3:o:abb:ac700f_firmware:9.2.0:sp1:*:*:*:*:*:*
cpe:2.3:h:abb:ac700f:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
OR cpe:2.3:o:abb:freelance_2013:-:*:*:*:*:*:*:*
cpe:2.3:o:abb:freelance_2013:-:sp1:*:*:*:*:*:*
cpe:2.3:o:abb:freelance_2016:-:*:*:*:*:*:*:*
cpe:2.3:o:abb:freelance_2016:-:sp1:*:*:*:*:*:*
cpe:2.3:o:abb:freelance_2019:-:*:*:*:*:*:*:*
cpe:2.3:o:abb:freelance_2019:-:sp1:*:*:*:*:*:*
cpe:2.3:o:abb:freelance_2019:-:sp1_fp1:*:*:*:*:*:*
OR cpe:2.3:h:abb:ac700f:-:*:*:*:*:*:*:*
cpe:2.3:h:abb:ac900f:-:*:*:*:*:*:*:*

History

21 Nov 2024, 07:37

Type Values Removed Values Added
CVSS v2 : unknown
v3 : 7.5
v2 : unknown
v3 : 8.6
References () https://search.abb.com/library/Download.aspx?DocumentID=7PAA007517&LanguageCode=en&DocumentPartId=&Action=Launch&_ga=2.68514131.339223974.1691382343-1911411808.1686627590 - Patch, Vendor Advisory () https://search.abb.com/library/Download.aspx?DocumentID=7PAA007517&LanguageCode=en&DocumentPartId=&Action=Launch&_ga=2.68514131.339223974.1691382343-1911411808.1686627590 - Patch, Vendor Advisory

14 Aug 2023, 18:30

Type Values Removed Values Added
First Time Abb freelance 2019
Abb
Abb freelance 2016
Abb ac700f Firmware
Abb ac700f
Abb freelance 2013
Abb ac900f
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 7.5
CPE cpe:2.3:o:abb:freelance_2019:-:sp1:*:*:*:*:*:*
cpe:2.3:o:abb:ac700f_firmware:9.2.0:sp1:*:*:*:*:*:*
cpe:2.3:o:abb:freelance_2019:-:sp1_fp1:*:*:*:*:*:*
cpe:2.3:o:abb:freelance_2013:-:sp1:*:*:*:*:*:*
cpe:2.3:h:abb:ac700f:-:*:*:*:*:*:*:*
cpe:2.3:h:abb:ac900f:-:*:*:*:*:*:*:*
cpe:2.3:o:abb:freelance_2016:-:sp1:*:*:*:*:*:*
cpe:2.3:o:abb:ac700f_firmware:9.2.0:-:*:*:*:*:*:*
cpe:2.3:o:abb:ac700f_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:abb:freelance_2016:-:*:*:*:*:*:*:*
cpe:2.3:o:abb:freelance_2019:-:*:*:*:*:*:*:*
cpe:2.3:o:abb:freelance_2013:-:*:*:*:*:*:*:*
References (MISC) https://search.abb.com/library/Download.aspx?DocumentID=7PAA007517&LanguageCode=en&DocumentPartId=&Action=Launch&_ga=2.68514131.339223974.1691382343-1911411808.1686627590 - (MISC) https://search.abb.com/library/Download.aspx?DocumentID=7PAA007517&LanguageCode=en&DocumentPartId=&Action=Launch&_ga=2.68514131.339223974.1691382343-1911411808.1686627590 - Patch, Vendor Advisory

07 Aug 2023, 06:15

Type Values Removed Values Added
New CVE

Information

Published : 2023-08-07 06:15

Updated : 2024-11-21 07:37


NVD link : CVE-2023-0425

Mitre link : CVE-2023-0425

CVE.ORG link : CVE-2023-0425


JSON object : View

Products Affected

abb

  • ac900f
  • ac700f
  • ac700f_firmware
  • freelance_2013
  • freelance_2019
  • freelance_2016
CWE
CWE-839

Numeric Range Comparison Without Minimum Check