Abb Opc Server For Ac 800M vulnerabilities
3 known vulnerabilities affecting abb/opc_server_for_ac_800m.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH2LOW1
Vulnerabilities
Page 1 of 1
CVE-2021-22284HIGHCVSS 8.8≥ 5.1.0-0, < 6.0.0-42022-02-04
CVE-2021-22284 [HIGH] CWE-732 CVE-2021-22284: Incorrect Permission Assignment for Critical Resource vulnerability in OPC Server for AC 800M allows
Incorrect Permission Assignment for Critical Resource vulnerability in OPC Server for AC 800M allows an attacker to execute arbitrary code in the node running the AC800M OPC Server.
nvd
CVE-2020-8472HIGHCVSS 7.8v6.0 and earlier2020-04-29
CVE-2020-8472 [MEDIUM] CWE-732 CVE-2020-8472: Insufficient folder permissions used by system functions in ABB System 800xA products OPCServer for
Insufficient folder permissions used by system functions in ABB System 800xA products OPCServer for AC800M (versions 6.0 and earlier) and Control Builder M Professional, MMSServer for AC800M, Base Software for SoftControl (version 6.1 and earlier) allow low privileged users to read, modify, add and delete system and application files. An authenticated
cvelistv5nvd
CVE-2020-8478LOWCVSS 3.3vall versions2020-04-29
CVE-2020-8478 [MEDIUM] CWE-264 CVE-2020-8478: Insufficient protection of the inter-process communication functions in ABB System 800xA products OP
Insufficient protection of the inter-process communication functions in ABB System 800xA products OPC Server for AC 800M, MMS Server for AC 800M and Base Software for SoftControl (all published versions) enables an attacker authenticated on the local system to inject data, affecting the online view of runtime data shown in Control Builder.
cvelistv5nvd