2024-12-05
|
CVE-2024-48846
|
Cross Site Request Forgery vulnerabilities where found providing a potiential for exposing sensitive information or changing system settings.
Affected products:
ABB ASPECT - Enterprise v3.08.02;
NEXUS Series v3.08.02;
MATRIX Series v3.08.02
|
Aspect\-Ent\-12_firmware, Aspect\-Ent\-256_firmware, Aspect\-Ent\-2_firmware, Aspect\-Ent\-96_firmware, Matrix\-11_firmware, Matrix\-216_firmware, Matrix\-232_firmware, Matrix\-264_firmware, Matrix\-296_firmware, Nexus\-2128\-A_firmware, Nexus\-2128\-F_firmware, Nexus\-2128\-G_firmware, Nexus\-2128_firmware, Nexus\-264\-A_firmware, Nexus\-264\-F_firmware, Nexus\-264\-G_firmware, Nexus\-264_firmware, Nexus\-3\-2128_firmware, Nexus\-3\-264_firmware
|
7.3
|
|
|
2024-12-05
|
CVE-2024-48847
|
MD5 Checksum Bypass vulnerabilities where found exploiting a weakness in the way an application dependency calculates or validates MD5 checksum hashes.
Affected products:
ABB ASPECT - Enterprise v3.08.01;
NEXUS Series v3.08.01;
MATRIX Series v3.08.01
|
Aspect\-Ent\-12_firmware, Aspect\-Ent\-256_firmware, Aspect\-Ent\-2_firmware, Aspect\-Ent\-96_firmware, Matrix\-11_firmware, Matrix\-216_firmware, Matrix\-232_firmware, Matrix\-264_firmware, Matrix\-296_firmware, Nexus\-2128\-A_firmware, Nexus\-2128\-F_firmware, Nexus\-2128\-G_firmware, Nexus\-2128_firmware, Nexus\-264\-A_firmware, Nexus\-264\-F_firmware, Nexus\-264\-G_firmware, Nexus\-264_firmware, Nexus\-3\-2128_firmware, Nexus\-3\-264_firmware
|
9.1
|
|
|
2024-12-05
|
CVE-2024-51541
|
Local File Inclusion vulnerabilities allow access to sensitive system information.
Affected products:
ABB ASPECT - Enterprise v3.08.02;
NEXUS Series v3.08.02;
MATRIX Series v3.08.02
|
Aspect\-Ent\-12_firmware, Aspect\-Ent\-256_firmware, Aspect\-Ent\-2_firmware, Aspect\-Ent\-96_firmware, Matrix\-11_firmware, Matrix\-216_firmware, Matrix\-232_firmware, Matrix\-264_firmware, Matrix\-296_firmware, Nexus\-2128\-A_firmware, Nexus\-2128\-F_firmware, Nexus\-2128\-G_firmware, Nexus\-2128_firmware, Nexus\-264\-A_firmware, Nexus\-264\-F_firmware, Nexus\-264\-G_firmware, Nexus\-264_firmware, Nexus\-3\-2128_firmware, Nexus\-3\-264_firmware
|
7.5
|
|
|
2024-12-05
|
CVE-2024-51542
|
Configuration Download vulnerabilities allow access to dependency configuration information.
Affected products:
ABB ASPECT - Enterprise v3.08.02;
NEXUS Series v3.08.02;
MATRIX Series v3.08.02
|
Aspect\-Ent\-12_firmware, Aspect\-Ent\-256_firmware, Aspect\-Ent\-2_firmware, Aspect\-Ent\-96_firmware, Matrix\-11_firmware, Matrix\-216_firmware, Matrix\-232_firmware, Matrix\-264_firmware, Matrix\-296_firmware, Nexus\-2128\-A_firmware, Nexus\-2128\-F_firmware, Nexus\-2128\-G_firmware, Nexus\-2128_firmware, Nexus\-264\-A_firmware, Nexus\-264\-F_firmware, Nexus\-264\-G_firmware, Nexus\-264_firmware, Nexus\-3\-2128_firmware, Nexus\-3\-264_firmware
|
N/A
|
|
|
2024-12-05
|
CVE-2024-51543
|
Information Disclosure vulnerabilities allow access to application configuration information.
Affected products:
ABB ASPECT - Enterprise v3.08.02;
NEXUS Series v3.08.02;
MATRIX Series v3.08.02
|
Aspect\-Ent\-12_firmware, Aspect\-Ent\-256_firmware, Aspect\-Ent\-2_firmware, Aspect\-Ent\-96_firmware, Matrix\-11_firmware, Matrix\-216_firmware, Matrix\-232_firmware, Matrix\-264_firmware, Matrix\-296_firmware, Nexus\-2128\-A_firmware, Nexus\-2128\-F_firmware, Nexus\-2128\-G_firmware, Nexus\-2128_firmware, Nexus\-264\-A_firmware, Nexus\-264\-F_firmware, Nexus\-264\-G_firmware, Nexus\-264_firmware, Nexus\-3\-2128_firmware, Nexus\-3\-264_firmware
|
7.5
|
|
|
2024-12-05
|
CVE-2024-51549
|
Absolute File Traversal vulnerabilities allows access and modification of un-intended resources.
Affected products:
ABB ASPECT - Enterprise v3.08.02;
NEXUS Series v3.08.02;
MATRIX Series v3.08.02
|
Aspect\-Ent\-12_firmware, Aspect\-Ent\-256_firmware, Aspect\-Ent\-2_firmware, Aspect\-Ent\-96_firmware, Matrix\-11_firmware, Matrix\-216_firmware, Matrix\-232_firmware, Matrix\-264_firmware, Matrix\-296_firmware, Nexus\-2128\-A_firmware, Nexus\-2128\-F_firmware, Nexus\-2128\-G_firmware, Nexus\-2128_firmware, Nexus\-264\-A_firmware, Nexus\-264\-F_firmware, Nexus\-264\-G_firmware, Nexus\-264_firmware, Nexus\-3\-2128_firmware, Nexus\-3\-264_firmware
|
9.4
|
|
|
2024-12-05
|
CVE-2024-51545
|
Username Enumeration vulnerabilities allow access to application level username add, delete, modify and list functions.
Affected products:
ABB ASPECT - Enterprise v3.08.02;
NEXUS Series v3.08.02;
MATRIX Series v3.08.02
|
Aspect\-Ent\-12_firmware, Aspect\-Ent\-256_firmware, Aspect\-Ent\-2_firmware, Aspect\-Ent\-96_firmware, Matrix\-11_firmware, Matrix\-216_firmware, Matrix\-232_firmware, Matrix\-264_firmware, Matrix\-296_firmware, Nexus\-2128\-A_firmware, Nexus\-2128\-F_firmware, Nexus\-2128\-G_firmware, Nexus\-2128_firmware, Nexus\-264\-A_firmware, Nexus\-264\-F_firmware, Nexus\-264\-G_firmware, Nexus\-264_firmware, Nexus\-3\-2128_firmware, Nexus\-3\-264_firmware
|
9.8
|
|
|
2024-12-05
|
CVE-2024-51546
|
Credentials Disclosure vulnerabilities allow access to on board project back-up bundles.
Affected products:
ABB ASPECT - Enterprise v3.08.02;
NEXUS Series v3.08.02;
MATRIX Series v3.08.02
|
Aspect\-Ent\-12_firmware, Aspect\-Ent\-256_firmware, Aspect\-Ent\-2_firmware, Aspect\-Ent\-96_firmware, Matrix\-11_firmware, Matrix\-216_firmware, Matrix\-232_firmware, Matrix\-264_firmware, Matrix\-296_firmware, Nexus\-2128\-A_firmware, Nexus\-2128\-F_firmware, Nexus\-2128\-G_firmware, Nexus\-2128_firmware, Nexus\-264\-A_firmware, Nexus\-264\-F_firmware, Nexus\-264\-G_firmware, Nexus\-264_firmware, Nexus\-3\-2128_firmware, Nexus\-3\-264_firmware
|
N/A
|
|
|
2024-12-05
|
CVE-2024-51548
|
Dangerous File Upload vulnerabilities allow upload of malicious scripts.
Affected products:
ABB ASPECT - Enterprise v3.08.02;
NEXUS Series v3.08.02;
MATRIX Series v3.08.02
|
Aspect\-Ent\-12_firmware, Aspect\-Ent\-256_firmware, Aspect\-Ent\-2_firmware, Aspect\-Ent\-96_firmware, Matrix\-11_firmware, Matrix\-216_firmware, Matrix\-232_firmware, Matrix\-264_firmware, Matrix\-296_firmware, Nexus\-2128\-A_firmware, Nexus\-2128\-F_firmware, Nexus\-2128\-G_firmware, Nexus\-2128_firmware, Nexus\-264\-A_firmware, Nexus\-264\-F_firmware, Nexus\-264\-G_firmware, Nexus\-264_firmware, Nexus\-3\-2128_firmware, Nexus\-3\-264_firmware
|
8.8
|
|
|
2024-12-05
|
CVE-2024-51551
|
Default Credentail vulnerabilities in ASPECT on Linux allows access to the product using publicly available default credentials.
Affected products:
ABB ASPECT - Enterprise v3.07.02;
NEXUS Series v3.07.02;
MATRIX Series v3.07.02
|
Aspect\-Ent\-12_firmware, Aspect\-Ent\-256_firmware, Aspect\-Ent\-2_firmware, Aspect\-Ent\-96_firmware, Matrix\-11_firmware, Matrix\-216_firmware, Matrix\-232_firmware, Matrix\-264_firmware, Matrix\-296_firmware, Nexus\-2128\-A_firmware, Nexus\-2128\-F_firmware, Nexus\-2128\-G_firmware, Nexus\-2128_firmware, Nexus\-264\-A_firmware, Nexus\-264\-F_firmware, Nexus\-264\-G_firmware, Nexus\-264_firmware, Nexus\-3\-2128_firmware, Nexus\-3\-264_firmware
|
10.0
|
|
|