6.2
CVE-2021-22283
- EPSS 0.07%
- Published 28.02.2023 05:15:12
- Last modified 21.11.2024 05:49:50
- Source cybersecurity@ch.abb.com
- Teams watchlist Login
- Open Login
Improper Initialization vulnerability in ABB Relion protection relays - 611 series, ABB Relion protection relays - 615 series IEC 4.0 FP1, ABB Relion protection relays - 615 series CN 4.0 FP1, ABB Relion protection relays - 615 series IEC 5.0, ABB Relion protection relays - 615 series IEC 5.0 FP1, ABB Relion protection relays - 620 series IEC/CN 2.0, ABB Relion protection relays - 620 series IEC/CN 2.0 FP1, ABB Relion protection relays - REX640 PCL1, ABB Relion protection relays - REX640 PCL2, ABB Relion protection relays - REX640 PCL3, ABB Relion protection relays - RER615, ABB Remote Monitoring and Control - REC615, ABB Merging Unit- SMU615 allows Communication Channel Manipulation.This issue affects Relion protection relays - 611 series: from 1.0.0 before 2.0.3; Relion protection relays - 615 series IEC 4.0 FP1: from 4.1.0 before 4.1.9; Relion protection relays - 615 series CN 4.0 FP1: from 4.1.0 before 4.1.8; Relion protection relays - 615 series IEC 5.0: from 5.0.0 before 5.0.12; Relion protection relays - 615 series IEC 5.0 FP1: from 5.1.0 before 5.1.20; Relion protection relays - 620 series IEC/CN 2.0: from 2.0.0 before 2.0.11; Relion protection relays - 620 series IEC/CN 2.0 FP1: from 2.1.0 before 2.1.15; Relion protection relays - REX640 PCL1: from 1.0.0 before 1.0.8; Relion protection relays - REX640 PCL2: from 1.1.0 before 1.1.4; Relion protection relays - REX640 PCL3: from 1.2.0 before 1.2.1; Relion protection relays - RER615: from 2.0.0 before 2.0.3; Remote Monitoring and Control - REC615: from 1.0.0 before 2.0.3; Merging Unit- SMU615: from 1.0.0 before 1.0.2.
Data is provided by the National Vulnerability Database (NVD)
Abb ≫ Smu615 Firmware Version < 1.0.2
Abb ≫ Rec615 Firmware Version < 2.0.3
Abb ≫ Rer615 Firmware Version < 2.0.3
Abb ≫ Rex640 Pcl3 Firmware Version < 1.2.1
Abb ≫ Rex640 Pcl2 Firmware Version < 1.1.4
Abb ≫ Rex640 Pcl1 Firmware Version < 1.0.8
Abb ≫ Relion 611 Firmware Version < 2.0.3
Abb ≫ Relion 615 Iec Firmware
Abb ≫ Relion 615 Iec Version2.0
Abb ≫ Relion 615 Iec Version3.0
Abb ≫ Relion 615 Iec Version4.0 Update-
Abb ≫ Relion 615 Iec Version3.0
Abb ≫ Relion 615 Iec Version4.0 Update-
Abb ≫ Relion 615 Cn Firmware
Abb ≫ Relion 615 Cn Version2.0
Abb ≫ Relion 615 Cn Version3.0
Abb ≫ Relion 615 Cn Version3.1
Abb ≫ Relion 615 Cn Version4.0 Update-
Abb ≫ Relion 615 Cn Version5.0 Updatefp1
Abb ≫ Relion 615 Cn Version3.0
Abb ≫ Relion 615 Cn Version3.1
Abb ≫ Relion 615 Cn Version4.0 Update-
Abb ≫ Relion 615 Cn Version5.0 Updatefp1
Abb ≫ Relion 615 Ansi Firmware
Abb ≫ Relion 615 Ansi Version2.0
Abb ≫ Relion 615 Ansi Version4.0 Update-
Abb ≫ Relion 615 Ansi Version4.0 Updatefp1
Abb ≫ Relion 615 Ansi Version4.0 Updatefp2
Abb ≫ Relion 615 Ansi Version5.0 Updatefp1
Abb ≫ Relion 615 Ansi Version4.0 Update-
Abb ≫ Relion 615 Ansi Version4.0 Updatefp1
Abb ≫ Relion 615 Ansi Version4.0 Updatefp2
Abb ≫ Relion 615 Ansi Version5.0 Updatefp1
Abb ≫ Relion 615 Iec Firmware Version < 4.1.9
Abb ≫ Relion 615 Cn Firmware Version < 4.1.8
Abb ≫ Relion 615 Iec Firmware Version < 5.0.12
Abb ≫ Relion 615 Iec Firmware Version < 5.1.20
Abb ≫ Relion 620 Iec Firmware Version < 2.0.11
Abb ≫ Relion 620 Cn Firmware Version < 2.0.11
Abb ≫ Relion 620 Iec Firmware Version < 2.1.15
Abb ≫ Relion 620 Cn Firmware Version < 2.1.15
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.07% | 0.207 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 5.5 | 1.8 | 3.6 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
|
| cybersecurity@ch.abb.com | 6.2 | 2.5 | 3.6 |
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
|
CWE-665 Improper Initialization
The product does not initialize or incorrectly initializes a resource, which might leave the resource in an unexpected state when it is accessed or used.