CVE-2024-48839

Name of the Vulnerable Software and Affected Versions: ABB ASPECT - Enterprise version 3.08.02 NEXUS Series version 3.08.02 MATRIX Series version 3.08.02

Description: The issue is related to improper input validation, which allows for remote code execution. This can be exploited by a remote attacker to execute arbitrary code. The vulnerability is associated with incorrect code generation management in the software of embedded network controllers for building management.

Recommendations: For ABB ASPECT - Enterprise version 3.08.02, update to a version that fixes the improper input validation issue. For NEXUS Series version 3.08.02, update to a version that fixes the improper input validation issue. For MATRIX Series version 3.08.02, update to a version that fixes the improper input validation issue. As a temporary workaround, consider restricting access to the vulnerable software components until a patch is available.