CVE-2020-8489

Name of the Vulnerable Software and Affected Versions ABB System 800xA Information Management (all published versions)

Description The issue is related to insufficient protection of inter-process communication functions, allowing an authenticated attacker on the local system to inject data. This can affect runtime values stored in the archive or make Information Management history services unavailable.

Recommendations For all published versions of ABB System 800xA Information Management, consider restricting access to inter-process communication functions to prevent data injection until a patch is available. As a temporary workaround, limit the privileges of authenticated users on the local system to minimize the risk of exploitation.