ГлавнаяУязвимости → CVE-2024-6209
10критическая

CVE-2024-6209

→ есть в БДУ: BDU:2024-07896 (на русском)
Описание (на английском; русское — в БДУ выше)

Unauthorized file access in WEB Server in ABB ASPECT - Enterprise v3.08.01; NEXUS Series v3.08.01 ; MATRIX Series v3.08.01 allows Attacker to access files unauthorized

Затрагиваемое ПО
Abb Aspect-ent-12 firmwareAbb Aspect-ent-12Abb Aspect-ent-2 firmwareAbb Aspect-ent-2Abb Aspect-ent-256 firmwareAbb Aspect-ent-256Abb Aspect-ent-96 firmwareAbb Aspect-ent-96Abb Nexus-2128 firmwareAbb Nexus-2128Abb Nexus-2128-a firmwareAbb Nexus-2128-aAbb Nexus-2128-f firmwareAbb Nexus-2128-fAbb Nexus-2128-g firmwareAbb Nexus-2128-gAbb Nexus-264 firmwareAbb Nexus-264Abb Nexus-264-a firmwareAbb Nexus-264-aAbb Nexus-264-f firmwareAbb Nexus-264-fAbb Nexus-264-g firmwareAbb Nexus-264-gAbb Nexus-3-2128 firmware
CVSS
Балл10 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Источники
https://search.abb.com/library/Download.aspx?DocumentID=9AKK108469A7497&LanguageCode=en&DocumentPartId=&Action=Launchhttps://search.abb.com/library/Download.aspx?DocumentID=9AKK108469A7497&LanguageCode=en&DocumentPartId=&Action=Launch&_ga=2.39956449.23035250.1719878527-141379670.1701144964