6.3
CVE-2022-26080
- EPSS 0.19%
- Veröffentlicht 16.03.2023 13:15:08
- Zuletzt bearbeitet 21.11.2024 06:53:23
- Quelle cybersecurity@ch.abb.com
- Teams Watchlist Login
- Unerledigt Login
Use of Insufficiently Random Values vulnerability in ABB Pulsar Plus System Controller NE843_S, ABB Infinity DC Power Plant.This issue affects Pulsar Plus System Controller NE843_S : comcode 150042936; Infinity DC Power Plant: H5692448 G104 G842 G224L G630-4 G451C(2) G461(2) – comcode 150047415.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Abb ≫ H5692448 G104 Firmware Version-
Abb ≫ H5692448 G842 Firmware Version-
Abb ≫ H5692448 G224l Firmware Version-
Abb ≫ H5692448 G630-4 Firmware Version-
Abb ≫ H5692448 G451c(2) Firmware Version-
Abb ≫ H5692448 G461(2) Firmware Version-
Abb ≫ Ne843 S Firmware Version-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.19% | 0.383 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 4.3 | 2.8 | 1.4 |
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
|
| cybersecurity@ch.abb.com | 6.3 | 2.1 | 4.2 |
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:H/A:N
|
CWE-330 Use of Insufficiently Random Values
The product uses insufficiently random numbers or values in a security context that depends on unpredictable numbers.