CVE-2023-0863: Authentication to access the AC wallbox via its Bluetooth Low Energy (BLE) channel can be bypassed,

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2023-0863

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

Authentication to access the AC wallbox via its Bluetooth Low Energy (BLE) channel can be bypassed,

Source: NVD (National Vulnerability Database)

Vulnerability Description

Improper Authentication vulnerability in ABB Terra AC wallbox (UL40/80A), ABB Terra AC wallbox (UL32A), ABB Terra AC wallbox (CE) (Terra AC MID), ABB Terra AC wallbox (CE) Terra AC Juno CE, ABB Terra AC wallbox (CE) Terra AC PTB, ABB Terra AC wallbox (CE) Symbiosis, ABB Terra AC wallbox (JP).This issue affects Terra AC wallbox (UL40/80A): from 1.0;0 through 1.5.5; Terra AC wallbox (UL32A) : from 1.0;0 through 1.6.5; Terra AC wallbox (CE) (Terra AC MID): from 1.0;0 through 1.6.5; Terra AC wallbox (CE) Terra AC Juno CE: from 1.0;0 through 1.6.5; Terra AC wallbox (CE) Terra AC PTB : from 1.0;0 through 1.5.25; Terra AC wallbox (CE) Symbiosis: from 1.0;0 through 1.2.7; Terra AC wallbox (JP): from 1.0;0 through 1.6.5.

Source: NVD (National Vulnerability Database)

CVSS Information

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Source: NVD (National Vulnerability Database)

Vulnerability Type

认证机制不恰当

Source: NVD (National Vulnerability Database)

Vulnerability Title

ABB Terra AC wallbox 授权问题漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

ABB Terra AC wallbox是ABB公司的卓越的 EV 家用充电器，提供高价值的品质、面向未来的灵活性以及先进的安全和保护。 ABB Terra AC wallbox 存在安全漏洞，该漏洞源于身份验证不正确。以下产品及版本受到影响：Terra AC wallbox (UL40/80A 1.0.0版本至1.5.5版本、Terra AC wallbox (UL32A) 1.0.0版本至1.6.5版本、Terra AC wallbox (CE) (Terra AC MID) 1.0.0版本至1.6.

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE
ABB	Terra AC wallbox (UL40/80A)	1.0;0 ~ 1.5.5	-
ABB	Terra AC wallbox (UL32A)	1.0;0 ~ 1.6.5	-
ABB	Terra AC wallbox (CE) (Terra AC MID)	1.0;0 ~ 1.6.5	-
ABB	Terra AC wallbox (CE) Terra AC Juno CE	1.0;0 ~ 1.6.5	-
ABB	Terra AC wallbox (CE) Terra AC PTB	1.0;0 ~ 1.5.25	-
ABB	Terra AC wallbox (CE) Symbiosis	1.0;0 ~ 1.2.7	-
ABB	Terra AC wallbox (JP)	1.0;0 ~ 1.6.5	-

II. Public POCs for CVE-2023-0863

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2023-0863

Please Login to view more intelligence information

IV. Related Vulnerabilities

Same product: Terra AC wallbox (UL40/80A)

Same vendor: ABB

Same weakness: CWE-287

V. Comments for CVE-2023-0863

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

I. Basic Information for CVE-2023-0863

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2023-0863

III. Intelligence Information for CVE-2023-0863

IV. Related Vulnerabilities

V. Comments for CVE-2023-0863

Leave a comment