CVE-2021-22285

CWE-754 CWE-755 — Improper Exception Handling3 documents3 sources

Severity

7.5HIGH

EPSS

0.5%

top 32.50%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

ABB Pni800 ABB Spiet800 ABB Pni800 Firmware +1 more

Timeline

PublishedFeb 4

Latest updateFeb 10

Description

Improper Handling of Exceptional Conditions, Improper Check for Unusual or Exceptional Conditions vulnerability in the ABB SPIET800 and PNI800 module that allows an attacker to cause the denial of service or make the module unresponsive.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages4 packages

▶CVEListV5abb/pni800unspecified — A_B

▶CVEListV5abb/spiet800unspecified — A_B

▶NVDabb/pni800_firmwarea_b

▶NVDabb/spiet800_firmwarea_b

🔴Vulnerability Details

GHSA

GHSA-24xv-3279-x7hj: Improper Handling of Exceptional Conditions, Improper Check for Unusual or Exceptional Conditions vulnerability in the ABB SPIET800 and PNI800 module↗2022-02-10

▶

CVEList

SECURITY – Denial of Service Vulnerabilities in SPIET800 INFI-Net to Ethernet Transfer module and PNI800 S+ Ethernet communication interface module↗2022-02-04

▶