PT-2024-9239 · Abb · Abb Aspect Nexus Series+2
Published
2024-12-05
·
Updated
2024-12-05
·
CVE-2024-51554
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions:
ABB ASPECT Enterprise version 3.08.02
ABB ASPECT NEXUS Series version 3.08.02
ABB ASPECT MATRIX Series version 3.08.02
Description:
The issue is related to a default credential vulnerability, which can be exploited by an attacker to gain unauthorized access to the device using publicly available default credentials. This is due to an error that allows access to the product.
Recommendations:
For ABB ASPECT Enterprise version 3.08.02, change the default credentials to secure ones as soon as possible.
For ABB ASPECT NEXUS Series version 3.08.02, update the default credentials with strong, unique ones.
For ABB ASPECT MATRIX Series version 3.08.02, replace the default credentials with secure, non-default ones to prevent unauthorized access.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Abb Aspect Enterprise
Abb Aspect Matrix Series
Abb Aspect Nexus Series