Lucene search

[email protected]CVE-2022-34838

HistoryAug 24, 2022 - 4:15 p.m.

CVE-2022-34838

2022-08-2416:15:12

CWE-522

CWE-257

[email protected]

web.nvd.nist.gov

cve-2022-34838

abb zenon 8.20

password storage

data alteration

security vulnerability

8.4 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N

8.2 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

12.7%

JSON

Storing Passwords in a Recoverable Format vulnerability in ABB Zenon 8.20 allows an attacker who successfully exploit the vulnerability may add or alter data points and corresponding attributes. Once such engineering data is used the data visualization will be altered for the end user.

Affected configurations

NVD

Node

abbzenonRange≤8.20

CPENameOperatorVersion
abb:zenonabb zenonle8.20

CPE	Name	Operator	Version
abb:zenon	abb zenon	le	8.20

CNA Affected

[
  {
    "product": "ABB Zenon",
    "vendor": "ABB",
    "versions": [
      {
        "lessThanOrEqual": "8.20",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

References

search.abb.com/library/Download.aspx?DocumentID=2NGA001479&LanguageCode=en&DocumentPartId=&Action=Launch

Social References

8.4 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N

8.2 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

12.7%

JSON

Related for CVE-2022-34838

prion1 nvd1 cvelist1