CVE-2024-1913

EPSS 0.53%
Veröffentlicht 14.05.2024 16:16:01
Zuletzt bearbeitet 19.12.2025 14:46:23
Quelle cybersecurity@ch.abb.com
CVE-Watchlists
Login
Unerledigt
Login

An attacker who successfully exploited these vulnerabilities could cause the robot to stop, make the robot controller inaccessible, or execute arbitrary code. 

The vulnerability could potentially be exploited to perform unauthorized actions by an attacker. This vulnerability arises under specific condition when specially crafted message is processed by the system.

Below are reported vulnerabilities in the Robot Ware versions.

  *  IRC5- RobotWare 6 < 6.15.06 except 6.10.10, and 6.13.07 
  *  OmniCore- RobotWare 7 < 7.14

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 4

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Abb ≫ Robotware Version >= 6.0.0 < 6.10.10

Abb ≫ Irc5 Version-

Abb ≫ Robotware Version > 6.10.10 < 6.13.07

Abb ≫ Irc5 Version-

Abb ≫ Robotware Version > 6.13.07 < 6.15.06

Abb ≫ Irc5 Version-

Abb ≫ Robotware Version >= 7.00 < 7.14

   Abb ≫ Omnicore C30 Version-
   Abb ≫ Omnicore C90xt Version-
   Abb ≫ Omnicore E10 Version-
   Abb ≫ Omnicore V250xt Version-
   Abb ≫ Omnicore V400xt Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.53%	0.665

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
cybersecurity@ch.abb.com	7.6	2.8	4.7	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H

CWE-787 Out-of-bounds Write

The product writes data past the end, or before the beginning, of the intended buffer.

https://search.abb.com/library/Download.aspx?DocumentID=SI20330&LanguageCode=en&DocumentPartId=&Action=Launch

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2024-1913

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-1913

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-1913

EUVD