CVE-2021-22286

CWE-20 — Improper Input Validation3 documents3 sources

Severity

7.5HIGH

EPSS

0.5%

top 32.50%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

ABB Pni800 ABB Spiet800 ABB Pni800 Firmware +1 more

Timeline

PublishedFeb 4

Latest updateFeb 10

Description

Improper Input Validation vulnerability in the ABB SPIET800 and PNI800 module allows an attacker to cause the denial of service or make the module unresponsive.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages4 packages

▶CVEListV5abb/pni800unspecified — A_B

▶CVEListV5abb/spiet800unspecified — A_B

▶NVDabb/pni800_firmwarea_b

▶NVDabb/spiet800_firmwarea_b

🔴Vulnerability Details

GHSA

GHSA-x36m-xqqr-f962: Improper Input Validation vulnerability in the ABB SPIET800 and PNI800 module allows an attacker to cause the denial of service or make the module unr↗2022-02-10

▶

CVEList

SECURITY – Denial of Service Vulnerabilities in SPIET800 INFI-Net to Ethernet Transfer module and PNI800 S+ Ethernet communication interface module↗2022-02-04

▶