CVE-2023-0863

Name of the Vulnerable Software and Affected Versions ABB Terra AC wallbox (UL40/80A) versions 1.0;0 through 1.5.5 ABB Terra AC wallbox (UL32A) versions 1.0;0 through 1.6.5 ABB Terra AC wallbox (CE) (Terra AC MID) versions 1.0;0 through 1.6.5 ABB Terra AC wallbox (CE) Terra AC Juno CE versions 1.0;0 through 1.6.5 ABB Terra AC wallbox (CE) Terra AC PTB versions 1.0;0 through 1.5.25 ABB Terra AC wallbox (CE) Symbiosis versions 1.0;0 through 1.2.7 ABB Terra AC wallbox (JP) versions 1.0;0 through 1.6.5

Description The issue is related to improper authentication in the ABB Terra AC wallbox, which can allow a remote attacker to gain unauthorized access to the device using a specially crafted message. This is due to deficiencies in the authentication procedure.

Recommendations For ABB Terra AC wallbox (UL40/80A) versions 1.0;0 through 1.5.5, update to a version later than 1.5.5. For ABB Terra AC wallbox (UL32A) versions 1.0;0 through 1.6.5, update to a version later than 1.6.5. For ABB Terra AC wallbox (CE) (Terra AC MID) versions 1.0;0 through 1.6.5, update to a version later than 1.6.5. For ABB Terra AC wallbox (CE) Terra AC Juno CE versions 1.0;0 through 1.6.5, update to a version later than 1.6.5. For ABB Terra AC wallbox (CE) Terra AC PTB versions 1.0;0 through 1.5.25, update to a version later than 1.5.25. For ABB Terra AC wallbox (CE) Symbiosis versions 1.0;0 through 1.2.7, update to a version later than 1.2.7. For ABB Terra AC wallbox (JP) versions 1.0;0 through 1.6.5, update to a version later than 1.6.5.