PT-2024-6673 · Abb · Matrix Series+2
Published
2024-06-26
·
Updated
2024-07-04
·
CVE-2024-4007
CVSS v3.1
8.8
High
| Vector | AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions:
ABB ASPECT; NEXUS Series; MATRIX Series version 3.07
Description:
The issue is related to the use of default credentials in the installation package of the affected products, allowing an attacker to log in to wrongly configured product instances. This could enable a remote attacker to gain full control over the device.
Recommendations:
For ABB ASPECT; NEXUS Series; MATRIX Series version 3.07, consider changing the default credentials to unique, strong passwords to prevent unauthorized access. As a temporary workaround, restrict access to the device until a patch or fix is available.
Exploit
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Abb Aspect
Matrix Series
Nexus Series