CVE-2018-18995
https://notcve.org/view.php?id=CVE-2018-18995
Pluto Safety PLC Gateway Ethernet devices ABB GATE-E1 and GATE-E2 all versions do not allow authentication to be configured on administrative telnet or web interfaces, which could enable various effects vectors, including conducting device resets, reading or modifying registers, and changing configuration settings such as IP addresses. Ninguna versión de los dispositivos Pluto Safety PLC Gateway Ethernet ABB GATE-E1 y GATE-E2permite la configuración de la autenticación en interfaces del administrador telnet o web, lo que podría habilitar varios vectores de efectos, incluyendo el restablecimiento de dispositivos, la lectura o modificación de registros y el cambio de los ajustes de configuración, como pueden ser las direcciones IP. • http://www.securityfocus.com/bid/106247 https://ics-cert.us-cert.gov/advisories/ICSA-18-352-01 • CWE-306: Missing Authentication for Critical Function •
CVE-2018-18997
https://notcve.org/view.php?id=CVE-2018-18997
Pluto Safety PLC Gateway Ethernet devices in ABB GATE-E1 and GATE-E2 all versions allows an unauthenticated attacker using the administrative web interface to insert an HTML/Javascript payload into any of the device properties, which may allow an attacker to display/execute the payload in a visitor browser. Todas las versiones de los dispositivos Pluto Safety PLC Gateway Ethernet ABB GATE-E1 y GATE-E2 permiten un atacante no autenticado, que utiliza el interfaz web del administrador, a insertar una carga útil de HTML/JavaScript en cualquiera de las propiedades del dispositivo, lo que podría permitir a un atacante mostrar/ejecutar dicha carga útil en un navegador de visitante. • http://www.securityfocus.com/bid/106247 https://ics-cert.us-cert.gov/advisories/ICSA-18-352-01 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVE-2018-10616 – ABB Panel Builder ModBus Beckhoff ClockDevice Stack-based Buffer Overflow Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2018-10616
ABB Panel Builder 800 all versions has an improper input validation vulnerability which may allow an attacker to insert and run arbitrary code on a computer where the affected product is used. ABB Panel Builder 800 en todas sus versiones tiene una vulnerabilidad de validación de entradas incorrecta que podría permitir que un atacante inserte y ejecute código arbitrario en un ordenador en el que se emplea el producto afectado. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of ABB Panel Builder 800. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of the ClockDevice parameter of the ABB Modbus Beckhoff OPC Driver. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a stack-based buffer. • http://search-ext.abb.com/library/Download.aspx?DocumentID=3BSE092089&Action=Launch http://www.securityfocus.com/bid/104882 https://ics-cert.us-cert.gov/advisories/ICSA-18-198-01 • CWE-20: Improper Input Validation •
CVE-2017-7906
https://notcve.org/view.php?id=CVE-2017-7906
In ABB IP GATEWAY 3.39 and prior, the web server does not sufficiently verify that a request was performed by the authenticated user, which may allow an attacker to launch a request impersonating that user. En ABB IP GATEWAY en versiones 3.39 y anteriores, el servidor web no verifica lo suficiente que se haya realizado una petición por parte del usuario autenticado. Esto podría permitir que un atacante lance una petición suplantando a dicho usuario. • http://www.securityfocus.com/bid/104388 https://ics-cert.us-cert.gov/advisories/ICSA-18-156-01 • CWE-352: Cross-Site Request Forgery (CSRF) •
CVE-2017-7931
https://notcve.org/view.php?id=CVE-2017-7931
In ABB IP GATEWAY 3.39 and prior, by accessing a specific uniform resource locator (URL) on the web server, a malicious user is able to access the configuration files and application pages without authentication. En ABB IP GATEWAY en versiones 3.39 y anteriores, al acceder a una URL en concreto en el servidor web, un usuario malicioso es capaz de acceder a los archivos de configuración y páginas de la aplicación sin autenticarse. • http://www.securityfocus.com/bid/104388 https://ics-cert.us-cert.gov/advisories/ICSA-18-156-01 • CWE-287: Improper Authentication •