CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2018-1168 – ABB MicroSCADA Improper Access Control Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2018-1168
This vulnerability allows local attackers to escalate privileges on vulnerable installations of ABB MicroSCADA 9.3 with FP 1-2-3. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the configuration of the access controls for the installed product files. The installation procedure leaves critical files open to manipulation by any authenticated user. An attacker can leverage this vulnerability to escalate privileges to SYSTEM. • https://library.e.abb.com/public/7a88a74b12bb492ea138b1f2365d00f6/ABBVU-PGGA-33888_ABB_SoftwareVulnerabilityHandlingAdvisory_Rev_A.pdf?x-sign=MJfu9cHtRUUubpLAYzyWFTmW5W+mg3kZ/nm7F/Jw5HlFTQf4eNyfLAgE8HozRJEC https://zerodayinitiative.com/advisories/ZDI-18-141 • CWE-284: Improper Access Control CWE-732: Incorrect Permission Assignment for Critical Resource •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-16731
https://notcve.org/view.php?id=CVE-2017-16731
An Unprotected Transport of Credentials issue was discovered in ABB Ellipse 8.3 through Ellipse 8.9 released prior to December 2017 (including Ellipse Select). A vulnerability exists in the authentication of Ellipse to LDAP/AD using the LDAP protocol. An attacker could exploit the vulnerability by sniffing local network traffic, allowing the discovery of authentication credentials. Se descubrió un problema de transporte de credenciales sin protección en ABB Ellipse 8.3 hasta la versión 8.9 de Ellipse publicada antes de diciembre de 2017 (incluyendo Ellipse Select). Existe una vulnerabilidad en la autenticación de Ellipse a LDAP/AD utilizando el protocolo LDAP. • https://ics-cert.us-cert.gov/advisories/ICSA-17-353-01 • CWE-522: Insufficiently Protected Credentials CWE-523: Unprotected Transport of Credentials •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2017-14025
https://notcve.org/view.php?id=CVE-2017-14025
An Improper Input Validation issue was discovered in ABB FOX515T release 1.0. An improper input validation vulnerability has been identified, allowing a local attacker to provide a malicious parameter to the script that is not validated by the application, This could enable the attacker to retrieve any file on the server. Se ha descubierto un problema de autenticación incorrecta en ABB FOX515T en su versión 1.0. Se ha identificado una vulnerabilidad de validación incorrecta de entradas, que permite que un atacante local proporcione un parámetro malicioso al script que no es validado por la aplicación. Esto podría permitir que el atacante recupere cualquier archivo del servidor. • http://www.securityfocus.com/bid/101662 https://ics-cert.us-cert.gov/advisories/ICSA-17-304-01 • CWE-20: Improper Input Validation •
CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 0CVE-2017-15583
https://notcve.org/view.php?id=CVE-2017-15583
The embedded web server on ABB Fox515T 1.0 devices is vulnerable to Local File Inclusion. It accepts a parameter that specifies a file for display or for use as a template. The filename is not validated; an attacker could retrieve any file. El servidor web embebido en dispositivos ABB Fox515T 1.0 es vulnerable a Local File Inclusion. Acepta un parámetro que especifica un archivo para mostrar o emplear como plantilla. • http://search-ext.abb.com/library/Download.aspx?DocumentID=1KHW028693&LanguageCode=en&DocumentPartId=&Action=Launch • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •