5.1

CVE-2024-6157

EPSS 0.03%
Published 10.10.2024 13:15:14
Last modified 15.10.2024 12:58:51
Source cybersecurity@ch.abb.com
Teams watchlist Login
Open Login

An attacker who successfully exploited these vulnerabilities could cause the robot to stop.



A vulnerability exists in the PROFINET stack included in the RobotWare versions listed below. 

This vulnerability arises under specific condition when specially crafted message is processed by the system.

Below are reported vulnerabilities in the Robot Ware versions. 

* IRC5- RobotWare 6 < 6.15.06 except 6.10.10, and 6.13.07

Affected products Warnungen 0 Metrics 2 CWE 1 References 4

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

This information is available to logged-in users.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

VendorABB

≫

Product RobotWare 6

Default Statusunaffected

Version < 6.15.06 except 6.10.10, and 6.13.07

Version 6.0.0

Status affected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.03%	0.054

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
cybersecurity@ch.abb.com	5.1	1.4	3.6	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-476 NULL Pointer Dereference

The product dereferences a pointer that it expects to be valid but is NULL.

https://search.abb.com/library/Download.aspx?DocumentID=SI20337&LanguageCode=en&DocumentPartId=&Action=Launch

https://nvd.nist.gov/vuln/detail/CVE-2024-6157

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-6157

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-6157

EUVD