Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
ABB System 800xA Weak File Permissions - different products
Vulnerability Description
Insufficient folder permissions used by system functions in ABB System 800xA products OPCServer for AC800M (versions 6.0 and earlier) and Control Builder M Professional, MMSServer for AC800M, Base Software for SoftControl (version 6.1 and earlier) allow low privileged users to read, modify, add and delete system and application files. An authenticated attacker who successfully exploited the vulnerabilities could escalate his/her privileges, cause system functions to stop and to corrupt user applications.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Vulnerability Type
关键资源的不正确权限授予
Vulnerability Title
多款ABB产品安全漏洞
Vulnerability Description
ABB OPCServer for AC800M等都是瑞士ABB公司的产品。ABB OPCServer for AC800M是一款适用于AC800M的OPC(OLE for Process Control)服务器。Control Builder M Professional是一款紧凑型控制构建器。MMSServer for AC800M是一款适用于AC800M的MMS()服务器。 多款ABB产品中存在安全漏洞,该漏洞源于系统功能所使用的Windows文件夹允许低权限用户读取、修改并删除文件和应用程序文件。
CVSS Information
N/A
Vulnerability Type
N/A