PT-2024-6749 · Abb · Abb 800Xa Base
Published
2024-06-05
·
Updated
2025-09-08
·
CVE-2024-3036
CVSS v4.0
6.9
Medium
| Vector | AV:A/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:N/AU:Y/R:A/V:D/RE:M/U:X |
Name of the Vulnerable Software and Affected Versions:
ABB 800xA Base versions 6.0.0 through 6.1.1-2
Description:
The issue is related to improper input validation, which could allow an attacker to cause services to crash by sending specifically crafted messages. This can be exploited remotely, potentially leading to a denial of service by sending numerous messages.
Recommendations:
For ABB 800xA Base versions 6.0.0 through 6.1.1-2, consider implementing input validation mechanisms to prevent the system from processing maliciously crafted messages until a patch is available. As a temporary workaround, restrict access to the system to minimize the risk of exploitation.
Fix
RCE
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Abb 800Xa Base