Abb Pb610 Panel Builder 600 Firmware vulnerabilities

6 known vulnerabilities affecting abb/pb610_panel_builder_600_firmware.

Total CVEs
6
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH5MEDIUM1

Vulnerabilities

Page 1 of 1
CVE-2019-7226HIGHCVSS 8.8≥ 1.91, ≤ 2.8.0.3672019-06-27
CVE-2019-7226 [HIGH] CWE-287 CVE-2019-7226: The ABB IDAL HTTP server CGI interface contains a URL that allows an unauthenticated attacker to byp The ABB IDAL HTTP server CGI interface contains a URL that allows an unauthenticated attacker to bypass authentication and gain access to privileged functions. Specifically, /cgi/loginDefaultUser creates a session in an authenticated state and returns the session ID along with what may be the username and cleartext password of the user. An attacker can
nvd
CVE-2019-7228HIGHCVSS 8.8≥ 1.91, ≤ 2.8.0.3672019-06-27
CVE-2019-7228 [HIGH] CWE-134 CVE-2019-7228: The ABB IDAL HTTP server mishandles format strings in a username or cookie during the authentication The ABB IDAL HTTP server mishandles format strings in a username or cookie during the authentication process. Attempting to authenticate with the username %25s%25p%25x%25n will crash the server. Sending %08x.AAAA.%08x.%08x will log memory content from the stack.
nvd
CVE-2019-7227HIGHCVSS 7.3≥ 1.91, ≤ 2.8.0.3672019-06-27
CVE-2019-7227 [HIGH] CWE-22 CVE-2019-7227: In the ABB IDAL FTP server, an authenticated attacker can traverse to arbitrary directories on the h In the ABB IDAL FTP server, an authenticated attacker can traverse to arbitrary directories on the hard disk with "CWD ../" and then use the FTP server functionality to download and upload files. An unauthenticated attacker can take advantage of the hardcoded or default credential pair exor/exor to become an authenticated attacker.
nvd
CVE-2019-7232HIGHCVSS 8.8≥ 1.91, ≤ 2.8.0.3672019-06-24
CVE-2019-7232 [HIGH] CWE-787 CVE-2019-7232: The ABB IDAL HTTP server is vulnerable to a buffer overflow when a long Host header is sent in a web The ABB IDAL HTTP server is vulnerable to a buffer overflow when a long Host header is sent in a web request. The Host header value overflows a buffer and overwrites a Structured Exception Handler (SEH) address. An unauthenticated attacker can submit a Host header value of 2047 bytes or more to overflow the buffer and overwrite the SEH address, which ca
nvd
CVE-2019-7230HIGHCVSS 8.8≥ 1.91, ≤ 2.8.0.3672019-06-24
CVE-2019-7230 [HIGH] CWE-134 CVE-2019-7230: The ABB IDAL FTP server mishandles format strings in a username during the authentication process. A The ABB IDAL FTP server mishandles format strings in a username during the authentication process. Attempting to authenticate with the username %s%p%x%d will crash the server. Sending %08x.AAAA.%08x.%08x will log memory content from the stack.
nvd
CVE-2019-7231MEDIUMCVSS 5.7≥ 1.91, ≤ 2.8.0.3672019-06-24
CVE-2019-7231 [MEDIUM] CWE-119 CVE-2019-7231: The ABB IDAL FTP server is vulnerable to a buffer overflow when a long string is sent by an authenti The ABB IDAL FTP server is vulnerable to a buffer overflow when a long string is sent by an authenticated attacker. This overflow is handled, but terminates the process. An authenticated attacker can send a FTP command string of 472 bytes or more to overflow a buffer, causing an exception that terminates the server.
nvd