Abb Symphony Plus S+ Operations vulnerabilities

7 known vulnerabilities affecting abb/symphony_plus_s+_operations.

Total CVEs

7

CISA KEV

0

Public exploits

0

Exploited in wild

0

Severity breakdown

CRITICAL2HIGH5

Vulnerabilities

Page 1 of 1

CVE-2024-0335HIGHCVSS 7.5≥ 3..0;0, ≤ 3.3 SP1 RU4≥ 2.1;0, ≤ 2.1 SP2 RU3+1 more2024-04-03

CVE-2024-0335 [HIGH] CWE-23 CVE-2024-0335: ABB has internally identified a vulnerability in the ABB VPNI feature of the S+ Control API componen ABB has internally identified a vulnerability in the ABB VPNI feature of the S+ Control API component which may be used by several Symphony Plus products (e.g., S+ Operations, S+ Engineering and S+ Analyst) This issue affects Symphony Plus S+ Operations: from 3..0;0 through 3.3 SP1 RU4, from 2.1;0 through 2.1 SP2 RU3, from 2.0;0 through 2.0 SP6 TC6; Sy

CVE-2023-0228HIGHCVSS 8.8≥ 2.x, ≤ 2.1 SP2v2.2+2 more2023-03-02

CVE-2023-0228 [HIGH] CWE-287 CVE-2023-0228: Improper Authentication vulnerability in ABB Symphony Plus S+ Operations.This issue affects Symphony Improper Authentication vulnerability in ABB Symphony Plus S+ Operations.This issue affects Symphony Plus S+ Operations: from 2.X through 2.1 SP2, 2.2, from 3.X through 3.3 SP1, 3.3 SP2.

CVE-2020-8481CRITICALCVSS 9.8≥ 3, ≤ 3.22020-04-29

CVE-2020-8481 [CRITICAL] CWE-200 CVE-2020-8481: For ABB products ABB Ability™ System 800xA and related system extensions versions 5.1, 6.0 and 6.1, For ABB products ABB Ability™ System 800xA and related system extensions versions 5.1, 6.0 and 6.1, Compact HMI versions 5.1 and 6.0, Control Builder Safe 1.0, 1.1 and 2.0, Symphony Plus -S+ Operations 3.0 to 3.2 Symphony Plus -S+ Engineering 1.1 to 2.2, Composer Harmony 5.1, 6.0 and 6.1, Melody Composer 5.3, 6.1/6.2 and SPE for Melody 1.0SPx (Compos

CVE-2020-8479CRITICALCVSS 9.8≥ 3, ≤ 3.22020-04-29

CVE-2020-8479 [CRITICAL] CWE-91 CVE-2020-8479: For the Central Licensing Server component used in ABB products ABB Ability™ System 800xA and relate For the Central Licensing Server component used in ABB products ABB Ability™ System 800xA and related system extensions versions 5.1, 6.0 and 6.1, Compact HMI versions 5.1 and 6.0, Control Builder Safe 1.0, 1.1 and 2.0, Symphony Plus -S+ Operations 3.0 to 3.2 Symphony Plus -S+ Engineering 1.1 to 2.2, Composer Harmony 5.1, 6.0 and 6.1, Melody Composer

CVE-2020-8476HIGHCVSS 7.5≥ 3, ≤ 3.22020-04-29

CVE-2020-8476 [MEDIUM] CWE-20 CVE-2020-8476: For the Central Licensing Server component used in ABB products ABB Ability™ System 800xA and relate For the Central Licensing Server component used in ABB products ABB Ability™ System 800xA and related system extensions versions 5.1, 6.0 and 6.1, Compact HMI versions 5.1 and 6.0, Control Builder Safe 1.0, 1.1 and 2.0, Symphony Plus -S+ Operations 3.0 to 3.2 Symphony Plus -S+ Engineering 1.1 to 2.2, Composer Harmony 5.1, 6.0 and 6.1, Melody Composer 5

CVE-2020-8475HIGHCVSS 7.5≥ 3, ≤ 3.22020-04-29

CVE-2020-8475 [MEDIUM] CWE-20 CVE-2020-8475: For the Central Licensing Server component used in ABB products ABB Ability™ System 800xA and relate For the Central Licensing Server component used in ABB products ABB Ability™ System 800xA and related system extensions versions 5.1, 6.0 and 6.1, Compact HMI versions 5.1 and 6.0, Control Builder Safe 1.0, 1.1 and 2.0, Symphony Plus -S+ Operations 3.0 to 3.2 Symphony Plus -S+ Engineering 1.1 to 2.2, Composer Harmony 5.1, 6.0 and 6.1, Melody Composer 5

CVE-2020-8471HIGHCVSS 7.8≥ 3, ≤ 3.22020-04-29

CVE-2020-8471 [HIGH] CWE-275 CVE-2020-8471: For the Central Licensing Server component used in ABB products ABB Ability™ System 800xA and relate For the Central Licensing Server component used in ABB products ABB Ability™ System 800xA and related system extensions versions 5.1, 6.0 and 6.1, Compact HMI versions 5.1 and 6.0, Control Builder Safe 1.0, 1.1 and 2.0, Symphony Plus -S+ Operations 3.0 to 3.2 Symphony Plus -S+ Engineering 1.1 to 2.2, Composer Harmony 5.1, 6.0 and 6.1, Melody Composer 5.