CVE-2024-13957

CWE-918Server-Side Request Forgery (SSRF)3 documents3 sources
Severity
7.0HIGH
EPSS
0.2%
top 54.95%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
ABB Aspect-enterpriseABB Matrix SeriesABB Nexus Series
Timeline
PublishedMay 22

Description

SSRF Server Side Request Forgery vulnerabilities exist in ASPECT if administrator credentials become compromisedThis issue affects ASPECT-Enterprise: through 3.*; NEXUS Series: through 3.*; MATRIX Series: through 3.*.

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:H/VI:L/VA:N/SC:H/SI:L/SA:N

Affected Packages3 packages

CVEListV5abb/nexus_series3.*
CVEListV5abb/matrix_series3.*
CVEListV5abb/aspect-enterprise3.*

🔴Vulnerability Details

2
CVEList
SSRF Server Side Request Forgery2025-05-22
GHSA
GHSA-wr74-f9qr-g5xw: SSRF Server Side Request Forgery vulnerabilities exist in ASPECT if administrator credentials become compromisedThis issue affects ASPECT-Enterprise:2025-05-22
CVE-2024-13957 (HIGH CVSS 7) | SSRF Server Side Request Forgery vu | cvebase.io