ГлавнаяУязвимости → CVE-2024-4007
8.8высокая

CVE-2024-4007

Описание

Default credential in install package in ABB ASPECT; NEXUS Series; MATRIX Series version 3.07 allows attacker to login to product instances wrongly configured.

Затрагиваемое ПО
Abb Aspect-ent-12 firmwareAbb Aspect-ent-12Abb Aspect-ent-2 firmwareAbb Aspect-ent-2Abb Aspect-ent-256 firmwareAbb Aspect-ent-256Abb Aspect-ent-96 firmwareAbb Aspect-ent-96Abb Matrix-11 firmwareAbb Matrix-11Abb Matrix-216 firmwareAbb Matrix-216Abb Matrix-232 firmwareAbb Matrix-232Abb Matrix-264 firmwareAbb Matrix-264Abb Matrix-296 firmwareAbb Matrix-296Abb Nexus-2128 firmwareAbb Nexus-2128Abb Nexus-264 firmwareAbb Nexus-264Abb Nexus-3-2128 firmwareAbb Nexus-3-2128Abb Nexus-3-264 firmware
CVSS
Балл8.8 — высокая
ВекторCVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://search.abb.com/library/Download.aspx?DocumentID=9AKK108469A6101&LanguageCode=en&DocumentPartId=&Action=Launchhttps://search.abb.com/library/Download.aspx?DocumentID=9AKK108469A6101&LanguageCode=en&DocumentPartId=&Action=Launch