Support Us — Your donation helps us keep running

Goal: 1000 CNY,Raised: 1000 CNY

100.0%
Donate Now
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2020-24677
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
Insecure Web Service in Symphony Plus
Source: NVD (National Vulnerability Database)
Vulnerability Description
Vulnerabilities in the S+ Operations and S+ Historian web applications can lead to a possible code execution and privilege escalation, redirect the user somewhere else or download unwanted data.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Source: NVD (National Vulnerability Database)
Vulnerability Type
对因果或异常条件的不恰当检查
Source: NVD (National Vulnerability Database)
Vulnerability Title
ABB Symphony Plus Operations 和 ABB Symphony Plus Historian 代码问题漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
ABB Symphony Plus Operations和ABB Symphony Plus Historian都是瑞士ABB公司的产品。ABB Symphony Plus Operations是一个用于工业环境中为提高运营效率的管理设备。该设备提供易于使用的人机界面,无缝集成所有工厂设备和使用行业标准协议和技术的子系统,并提供警报管理、流程优化等功能。ABB Symphony Plus Historian是一个用于可视化查看管理工业设备历史信息的设备。 ABB Symphony Plus Operati
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
VendorProductAffected VersionsCPESubscribe
ABBABB Ability™ Symphony® Plus Operations unspecified ~ 3.3 Service Pack 1 -
ABBABB Ability™ Symphony® Plus Historian unspecified ~ 3.2 -
II. Public POCs for CVE-2020-24677
#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC
III. Intelligence Information for CVE-2020-24677
Please Login to view more intelligence information
New Vulnerabilities
Product: ABB Ability™ Symphony® Plus Operations
Vendor: ABB
Same weakness: CWE-754
V. Comments for CVE-2020-24677

No comments yet

Leave a comment