CVE-2024-3036

EPSS 0.11%
Veröffentlicht 21.06.2024 11:15:12
Zuletzt bearbeitet 19.12.2025 16:06:32
Quelle cybersecurity@ch.abb.com
CVE-Watchlists
Login
Unerledigt
Login

Communication DoS vulnerability

Improper Input Validation vulnerability in ABB 800xA Base.
An attacker who successfully exploited this 
vulnerability could cause services to crash by sending specifically crafted messages.
This issue affects 800xA Base: from 6.0.0 through 6.1.1-2.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 4

NVD 2 VulnDex Vulnerability Enrichment 1

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Abb ≫ 800xa Base System Version >= 6.0 <= 6.0.3-9

Abb ≫ 800xa Base System Version >= 6.1 <= 6.1.1-2

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.11%	0.31

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
cybersecurity@ch.abb.com	6.9	0	0	CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:N/AU:Y/R:A/V:D/RE:M/U:X
cybersecurity@ch.abb.com	5.7	2.1	3.6	CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE-1284 Improper Validation of Specified Quantity in Input

The product receives input that is expected to specify a quantity (such as size or length), but it does not validate or incorrectly validates that the quantity has the required properties.

https://search.abb.com/library/Download.aspx?DocumentID=7PAA013309&LanguageCode=en&DocumentPartId=&Action=Launch

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2024-3036

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-3036

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-3036

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2024-3036