Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2024-8036
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
Unauthorized Modifications of Firmware and Configuration
Source: NVD (National Vulnerability Database)
Vulnerability Description
ABB is aware of privately reported vulnerabilities in the product versions referenced in this CVE. An attacker could exploit these vulnerabilities by sending a specially crafted firmware or configuration to the system node, causing the node to stop, become inaccessible, or allowing the attacker to take control of the node.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:A/AC:H/PR:H/UI:R/S:U/C:L/I:H/A:H
Source: NVD (National Vulnerability Database)
Vulnerability Type
密码学签名的验证不恰当
Source: NVD (National Vulnerability Database)
Vulnerability Title
ABB多款产品 数据伪造问题漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
ABB Relion Protection Relays等都是瑞士ABB公司的产品。ABB Relion Protection Relays是一个适用于公用事业和工业配电系统的紧凑型多功能解决方案。ABB REX610是一款可灵活配置的多合一保护继电器。ABB REX615是一款可灵活配置的多合一保护继电器。 ABB多款产品存在数据伪造问题漏洞,该漏洞源于产品在更新固件或配置文件时不检查固件或配置的真实性和完整性。以下产品受到影响:ABB Relion Protection Relays 611, 615
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
VendorProductAffected VersionsCPESubscribe
ABBRelion Protection Relays RE_611 IEC 1.0.0 ~ 1.0.4 -
ABBRelion Protection Relays REF615 IEC 1.0.0 ~ 1.2.0 -
ABBRelion Protection Relays REF615 ANSI 1.0.0 ~ 1.1.0 -
ABBRelion Protection Relays REX615 PCL1 -
ABBRelion Protection Relays REX610 1.1.1 -
ABBRelion Protection Relays REX640 1.0.0 ~ 1.0.8 -
ABBSubstation Merging Unit SMU615 1.0.0 ~ 1.0.3 -
ABBSmart Substation Control and Protection SSC600 1.0 -
ABBRelion Protection Relays REF615R ANSI 4.0.0 ~ 4.1.2 -
ABBRelion Protection Relays RED615 IEC 1.0.0 ~ 1.1.5 -
ABBRelion Protection Relays 615 series IEC 2.0.0 ~ 2.0.9 -
ABBRelion Protection Relays 615 series CN 2.0.0 ~ 2.0.9 -
ABBRelion Protection Relays 615 series ANSI 2.0.0 ~ 2.0.9 -
ABBRelion Protection Relays RER615 1.0.0 ~ 1.1.4 -
ABBRelion Protection Relays REC615 1.0.0 ~ 1.1.4 -
ABBRBX615 1.0.0 ~ 2.0.0 -
ABBRER620 ANSI 1.0.0 ~ 1.3 -
ABB620 Series IEC/CN 2.0.0 ~ 2.0.13 -
ABBRE_630 1.1.0 ~ 1.1.0 C5 -
ABBRIO600 1.0.0 ~ 1.8.8 -
ABBCOM600 3.3 -
ABBSPA ZC-400 Exx -
ABBCOM600F ANSI 4.1 -
ABBSPA ZC-402 Exxx -
ABBREF542plus R1.0 -
ABBSUE 3000 2.6 V4F07x -
ABBARG600/ARP600/ARR600/ARC600 single SIM 3.x.x ~ 3.4.13 -
ABBARG600/ARP600 dual SIM 2.x.x ~ 3.4.13 -
ABBARM600 4.x.x ~ 5.0.3 -
ABBREC601/RER601 1.1 ~ 1.2 -
ABBREC603/RER603 1.1 ~ 1.2 -
II. Public POCs for CVE-2024-8036
#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC
III. Intelligence Information for CVE-2024-8036
Please Login to view more intelligence information
IV. Related Vulnerabilities
Same vendor: ABB
Same weakness: CWE-347
V. Comments for CVE-2024-8036

No comments yet

Leave a comment