CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
54.2%
Improper Privilege Management vulnerability in ABB Ltd. ASPECT®-Enterprise on ASPECT®-Enterprise, Linux (2CQG103201S3021, 2CQG103202S3021, 2CQG103203S3021, 2CQG103204S3021 modules), ABB Ltd. NEXUS Series on NEXUS Series, Linux (2CQG100102R2021, 2CQG100104R2021, 2CQG100105R2021, 2CQG100106R2021, 2CQG100110R2021, 2CQG100112R2021, 2CQG100103R2021, 2CQG100107R2021, 2CQG100108R2021, 2CQG100109R2021, 2CQG100111R2021, 2CQG100113R2021 modules), ABB Ltd. MATRIX Series on MATRIX Series, Linux (2CQG100102R1021, 2CQG100103R1021, 2CQG100104R1021, 2CQG100105R1021, 2CQG100106R1021 modules) allows Privilege Escalation.This issue affects ASPECT®-Enterprise: from 3.0;0 before 3.07.01; NEXUS Series: from 3.0;0 before 3.07.01; MATRIX Series: from 3.0;0 before 3.07.01.
Vendor | Product | Version | CPE |
---|---|---|---|
abb | aspect-ent-2 | - | cpe:2.3:h:abb:aspect-ent-2:-:*:*:*:*:*:*:* |
abb | aspect-ent-2_firmware | * | cpe:2.3:o:abb:aspect-ent-2_firmware:*:*:*:*:*:*:*:* |
abb | aspect-ent-12 | - | cpe:2.3:h:abb:aspect-ent-12:-:*:*:*:*:*:*:* |
abb | aspect-ent-12_firmware | * | cpe:2.3:o:abb:aspect-ent-12_firmware:*:*:*:*:*:*:*:* |
abb | aspect-ent-256 | - | cpe:2.3:h:abb:aspect-ent-256:-:*:*:*:*:*:*:* |
abb | aspect-ent-256_firmware | * | cpe:2.3:o:abb:aspect-ent-256_firmware:*:*:*:*:*:*:*:* |
abb | aspect-ent-96 | - | cpe:2.3:h:abb:aspect-ent-96:-:*:*:*:*:*:*:* |
abb | aspect-ent-96_firmware | * | cpe:2.3:o:abb:aspect-ent-96_firmware:*:*:*:*:*:*:*:* |
abb | nexus-2128 | - | cpe:2.3:h:abb:nexus-2128:-:*:*:*:*:*:*:* |
abb | nexus-2128_firmware | * | cpe:2.3:o:abb:nexus-2128_firmware:*:*:*:*:*:*:*:* |
[
{
"defaultStatus": "unaffected",
"modules": [
"2CQG103201S3021",
"2CQG103202S3021",
"2CQG103203S3021",
"2CQG103204S3021"
],
"platforms": [
"ASPECT®-Enterprise",
"Linux"
],
"product": "ASPECT®-Enterprise",
"vendor": "ABB Ltd.",
"versions": [
{
"lessThan": "3.07.01",
"status": "affected",
"version": "3.0;0",
"versionType": "update"
}
]
},
{
"defaultStatus": "unaffected",
"modules": [
"2CQG100102R2021",
"2CQG100104R2021",
"2CQG100105R2021",
"2CQG100106R2021",
"2CQG100110R2021",
"2CQG100112R2021",
"2CQG100103R2021",
"2CQG100107R2021",
"2CQG100108R2021",
"2CQG100109R2021",
"2CQG100111R2021",
"2CQG100113R2021"
],
"platforms": [
"NEXUS Series",
"Linux"
],
"product": "NEXUS Series",
"vendor": "ABB Ltd.",
"versions": [
{
"lessThan": "3.07.01",
"status": "affected",
"version": "3.0;0",
"versionType": "update"
}
]
},
{
"defaultStatus": "unaffected",
"modules": [
"2CQG100102R1021",
"2CQG100103R1021",
"2CQG100104R1021",
"2CQG100105R1021",
"2CQG100106R1021"
],
"platforms": [
"MATRIX Series",
"Linux"
],
"product": "MATRIX Series",
"vendor": "ABB Ltd.",
"versions": [
{
"lessThan": "3.07.01",
"status": "affected",
"version": "3.0;0",
"versionType": "update"
}
]
}
]