CVE-2022-0947

EPSS 0.41%
Veröffentlicht 10.05.2022 19:15:09
Zuletzt bearbeitet 21.11.2024 06:39:43
Quelle cybersecurity@ch.abb.com
Teams Watchlist Login
Unerledigt Login

A vulnerability in ABB ARG600 Wireless Gateway series that could allow an attacker to exploit the vulnerability by remotely connecting to the serial port gateway, and/or protocol converter, depending on the configuration.

Betroffene Produkte Warnungen 0 Metriken 4 CWE 1 Referenzen 4

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Abb ≫ Arg600a1220na Firmware Version >= 2.4.0 <= 3.4.10

Abb ≫ Arg600a1220na Version-

Abb ≫ Arg600a1230na Firmware Version >= 2.4.0 <= 3.4.10

Abb ≫ Arg600a1230na Version-

Abb ≫ Arg600a1240na Firmware Version >= 2.4.0 <= 3.4.10

Abb ≫ Arg600a1240na Version-

Abb ≫ Arg600a1260na Firmware Version >= 2.4.0 <= 3.4.10

Abb ≫ Arg600a1260na Version-

Abb ≫ Arg600a2622na Firmware Version >= 2.4.0 <= 3.4.10

Abb ≫ Arg600a2622na Version-

Abb ≫ Arg600a2625na Firmware Version >= 2.4.0 <= 3.4.10

Abb ≫ Arg600a2625na Version-

Abb ≫ Arp600a2200na Firmware Version >= 2.4.0 <= 3.4.10

Abb ≫ Arp600a2200na Version-

Abb ≫ Arp600a2220na Firmware Version >= 2.4.0 <= 3.4.10

Abb ≫ Arp600a2220na Version-

Abb ≫ Arp600a2250na Firmware Version >= 2.4.0 <= 3.4.10

Abb ≫ Arp600a2250na Version-

Abb ≫ Arp600a2260na Firmware Version >= 2.4.0 <= 3.4.10

Abb ≫ Arp600a2260na Version-

Abb ≫ Arp600a2651na Firmware Version >= 2.4.0 <= 3.4.10

Abb ≫ Arp600a2651na Version-

Abb ≫ Arp600a2560na Firmware Version >= 2.4.0 <= 3.4.10

Abb ≫ Arp600a2560na Version-

Abb ≫ Arr600a3201na Firmware Version >= 2.4.0 <= 3.4.10

Abb ≫ Arr600a3201na Version-

Abb ≫ Arr600a3202na Firmware Version >= 2.4.0 <= 3.4.10

Abb ≫ Arr600a3202na Version-

Abb ≫ Arr600a3221na Firmware Version >= 2.4.0 <= 3.4.10

Abb ≫ Arr600a3221na Version-

Abb ≫ Arr600a3222na Firmware Version >= 2.4.0 <= 3.4.10

Abb ≫ Arr600a3222na Version-

Abb ≫ Arr600a3251na Firmware Version >= 2.4.0 <= 3.4.10

Abb ≫ Arr600a3251na Version-

Abb ≫ Arr600a3252na Firmware Version >= 2.4.0 <= 3.4.10

Abb ≫ Arr600a3252na Version-

Abb ≫ Arr600a3261na Firmware Version >= 2.4.0 <= 3.4.10

Abb ≫ Arr600a3261na Version-

Abb ≫ Arr600a3262na Firmware Version >= 2.4.0 <= 3.4.10

Abb ≫ Arr600a3262na Version-

Abb ≫ Arc600a2325na Firmware Version >= 2.4.0 <= 3.4.10

Abb ≫ Arc600a2325na Version-

Abb ≫ Arc600a2323na Firmware Version >= 2.4.0 <= 3.4.10

Abb ≫ Arc600a2323na Version-

Abb ≫ Arc600a2324na Firmware Version >= 2.4.0 <= 3.4.10

Abb ≫ Arc600a2324na Version-

Abb ≫ Viola Systems Arctic Firmware Version >= 2.4.0 <= 3.4.10

Abb ≫ Viola Systems Arctic Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.41%	0.606

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	9.8	3.9	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov	6.8	8.6	6.4	AV:N/AC:M/Au:N/C:P/I:P/A:P
cybersecurity@ch.abb.com	9	2.3	6	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H

CWE-665 Improper Initialization

The product does not initialize or incorrectly initializes a resource, which might leave the resource in an unexpected state when it is accessed or used.

https://search.abb.com/library/Download.aspx?DocumentID=2NGA001253&LanguageCode=en&DocumentPartId=&Action=Launch

Vendor Advisory

Mitigation

https://nvd.nist.gov/vuln/detail/CVE-2022-0947

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2022-0947

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2022-0947

EUVD