CVE-2024-1914

EPSS 0.39%
Published 14.05.2024 16:16:03
Last modified 21.11.2024 08:51:35
Source cybersecurity@ch.abb.com
Teams watchlist Login
Open Login

An attacker who successfully exploited these vulnerabilities could cause the robot to stop, make the robot controller inaccessible.  

The vulnerability could potentially be exploited to perform unauthorized actions by an attacker. This vulnerability arises under specific condition when specially crafted message is processed by the system. 

Below are reported vulnerabilities in the Robot Ware versions. 

* IRC5- RobotWare 6 < 6.15.06 except 6.10.10, and 6.13.07 
* OmniCore- RobotWare 7 < 7.14

Affected products Warnungen 0 Metrics 2 CWE 1 References 4

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

This information is available to logged-in users.

Daten sind bereitgestellt durch das CVE Programm von Authorized Data Publishers (ADP) (Unstrukturiert)

Vendorabb

≫

Product robotware

Default Statusunaffected

Version < 6.15.06

Version 6.0.0

Status affected

Version 6.10.10

Status unaffected

Version 6.13.07

Status unaffected

Vendorabb

≫

Product robotware

Default Statusunaffected

Version < 7.14

Version 7.0

Status affected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.39%	0.591

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
cybersecurity@ch.abb.com	6.5	2.8	3.6	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE-476 NULL Pointer Dereference

The product dereferences a pointer that it expects to be valid but is NULL.

https://search.abb.com/library/Download.aspx?DocumentID=SI20330&LanguageCode=en&DocumentPartId=&Action=Launch

https://nvd.nist.gov/vuln/detail/CVE-2024-1914

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-1914

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-1914

EUVD