CVSS: 8.6EPSS: 0%CPEs: 3EXPL: 0CVE-2020-24685 – AC500 V2 unauthenticated crafter packet vulnerability
https://notcve.org/view.php?id=CVE-2020-24685
09 Feb 2021 — An unauthenticated specially crafted packet sent by an attacker over the network will cause a denial-of-service (DoS) vulnerability. Vulnerability allows attacker to stop the PLC. After stopping (ERR LED flashing red), physical access to the PLC is required in order to restart the application. This issue affects: ABB AC500 V2 products with onboard Ethernet version 2.8.4 and prior versions. Un paquete no autenticado especialmente diseñado y enviado por un atacante a través de la red causará una vulnerabilida... • https://search.abb.com/library/Download.aspx?DocumentID=3ADR010667&LanguageCode=en&DocumentPartId=&Action=Launch • CWE-770: Allocation of Resources Without Limits or Throttling CWE-789: Memory Allocation with Excessive Size Value •
CVSS: 9.8EPSS: 0%CPEs: 10EXPL: 0CVE-2020-24675 – Weak Authentication in Symphony Plus
https://notcve.org/view.php?id=CVE-2020-24675
22 Dec 2020 — In S+ Operations and S+ History, it is possible that an unauthenticated user could inject values to the Operations History server (or standalone S+ History server) and ultimately write values to the controlled process. En S+ Operations y S+ History, es posible que un usuario no autenticado pueda inyectar valores al servidor Operations History (o al servidor S+ History dedicado) y finalmente escribir valores en el proceso controlado • https://search.abb.com/library/Download.aspx?DocumentID=2PAA123980&LanguageCode=en&DocumentPartId=&Action=Launch • CWE-287: Improper Authentication •
CVSS: 9.8EPSS: 0%CPEs: 10EXPL: 0CVE-2020-24673 – SQL Injection in Symphony Plus
https://notcve.org/view.php?id=CVE-2020-24673
22 Dec 2020 — In S+ Operations and S+ Historian, a successful SQL injection exploit can read sensitive data from the database, modify database data (Insert/Update/Delete), execute administration operations on the database (such as shutdown the DBMS), recover the content of a given file present on the DBMS file system and in some cases issue commands to the operating system. This can lead to a loss of confidentiality and data integrity or even affect the product behavior and its availability. En S+ Operations y S+ Histori... • https://search.abb.com/library/Download.aspx?DocumentID=2PAA123980&LanguageCode=en&DocumentPartId=&Action=Launch • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 9.0EPSS: 0%CPEs: 10EXPL: 0CVE-2020-24674 – Improper Authorization in Symphony Plus
https://notcve.org/view.php?id=CVE-2020-24674
22 Dec 2020 — In S+ Operations and S+ Historian, not all client commands correctly check user permission as expected. Authenticated but Unauthorized remote users could execute a Denial-of-Service (DoS) attack, execute arbitrary code, or obtain more privilege than intended on the machines. En S+ Operations y S+ Historian, no todos los comandos del cliente comprueban correctamente los permisos del usuario como se esperaba. Los usuarios remotos autenticados pero no autorizados podrían ejecutar un ataque de denegación d... • https://search.abb.com/library/Download.aspx?DocumentID=2PAA123980&LanguageCode=en&DocumentPartId=&Action=Launch • CWE-285: Improper Authorization CWE-863: Incorrect Authorization •
CVSS: 9.8EPSS: 0%CPEs: 10EXPL: 0CVE-2020-24683 – Authentication Bypass in Symphony Plus
https://notcve.org/view.php?id=CVE-2020-24683
22 Dec 2020 — The affected versions of S+ Operations (version 2.1 SP1 and earlier) used an approach for user authentication which relies on validation at the client node (client-side authentication). This is not as secure as having the server validate a client application before allowing a connection. Therefore, if the network communication or endpoints for these applications are not protected, unauthorized actors can bypass authentication and make unauthorized connections to the server application. Las versiones afectad... • https://search.abb.com/library/Download.aspx?DocumentID=2PAA123980&LanguageCode=en&DocumentPartId=&Action=Launch • CWE-305: Authentication Bypass by Primary Weakness CWE-602: Client-Side Enforcement of Server-Side Security CWE-669: Incorrect Resource Transfer Between Spheres •
CVSS: 7.0EPSS: 0%CPEs: 10EXPL: 0CVE-2020-24680 – Improper Credential Storage in Symphony Plus
https://notcve.org/view.php?id=CVE-2020-24680
22 Dec 2020 — In S+ Operations and S+ Historian, the passwords of internal users (not Windows Users) are encrypted but improperly stored in a database. En S+ Operations y S+ Historian, las contraseñas de los usuarios internos (no usuarios de Windows) están cifradas pero almacenadas incorrectamente en una base de datos • https://search.abb.com/library/Download.aspx?DocumentID=2PAA123980&LanguageCode=en&DocumentPartId=&Action=Launch • CWE-255: Credentials Management Errors CWE-522: Insufficiently Protected Credentials •
CVSS: 10.0EPSS: 1%CPEs: 10EXPL: 0CVE-2020-24679 – Denial of Service attack on Symphony Plus
https://notcve.org/view.php?id=CVE-2020-24679
22 Dec 2020 — A S+ Operations and S+ Historian service is subject to a DoS by special crafted messages. An attacker might use this flaw to make it crash or even execute arbitrary code on the machine where the service is hosted. Un servicio S+ Operations y S+ Historian, está sujeto a una DoS mediante mensajes especiales diseñados. Un atacante podría usar este fallo para hacer que se bloquee o incluso ejecutar código arbitrario en la máquina donde está alojado el servicio • https://search.abb.com/library/Download.aspx?DocumentID=2PAA123980&LanguageCode=en&DocumentPartId=&Action=Launch • CWE-20: Improper Input Validation •
CVSS: 8.8EPSS: 0%CPEs: 10EXPL: 0CVE-2020-24677 – Insecure Web Service in Symphony Plus
https://notcve.org/view.php?id=CVE-2020-24677
22 Dec 2020 — Vulnerabilities in the S+ Operations and S+ Historian web applications can lead to a possible code execution and privilege escalation, redirect the user somewhere else or download unwanted data. Las vulnerabilidades en las aplicaciones web S+ Operations y S+ Historian, pueden conducir a una posible ejecución de código y escalada de privilegios, un redireccionamiento del usuario a otro lugar o una descarga de datos no deseados • https://search.abb.com/library/Download.aspx?DocumentID=2PAA123980&LanguageCode=en&DocumentPartId=&Action=Launch • CWE-754: Improper Check for Unusual or Exceptional Conditions •
CVSS: 7.8EPSS: 0%CPEs: 10EXPL: 0CVE-2020-24676 – Insecure Windows Services in Symphony Plus
https://notcve.org/view.php?id=CVE-2020-24676
22 Dec 2020 — In Symphony Plus Operations and Symphony Plus Historian, some services can be vulnerable to privilege escalation attacks. An unprivileged (but authenticated) user could execute arbitrary code and result in privilege escalation, depending on the user that the service runs as. En Symphony Plus Operations y Symphony Plus Historian, algunos servicios pueden ser vulnerables a ataques de escalada de privilegios. Un usuario sin privilegios (pero autenticado) podría ejecutar código arbitrario y resultar en una... • https://search.abb.com/library/Download.aspx?DocumentID=2PAA123980&LanguageCode=en&DocumentPartId=&Action=Launch • CWE-274: Improper Handling of Insufficient Privileges •
CVSS: 8.8EPSS: 0%CPEs: 10EXPL: 0CVE-2020-24678 – Potential Privilege Escalation in Symphony Plus
https://notcve.org/view.php?id=CVE-2020-24678
22 Dec 2020 — An authenticated user might execute malicious code under the user context and take control of the system. S+ Operations or S+ Historian database is affected by multiple vulnerabilities such as the possibility to allow remote authenticated users to gain high privileges. Un usuario autenticado puede ejecutar código malicioso en el contexto del usuario y tomar el control del sistema. La base de datos de S+ Operations o S??+ Historian está afectada por múltiples vulnerabilidades, como la posibilidad de per... • https://search.abb.com/library/Download.aspx?DocumentID=2PAA123980&LanguageCode=en&DocumentPartId=&Action=Launch • CWE-269: Improper Privilege Management •