PT-2025-5799 · Abb · Matrix Series+2
Published
2025-02-05
·
Updated
2025-05-23
·
CVE-2024-51547
CVSS v3.1
10
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions:
ABB ASPECT-Enterprise versions through 3.08.03
ABB NEXUS Series versions through 3.08.03
ABB MATRIX Series versions through 3.08.03
Description:
The issue is related to the use of hard-coded credentials, which affects multiple ABB products, including ASPECT-Enterprise, NEXUS Series, and MATRIX Series. This may allow a remote attacker to execute arbitrary code using default credentials.
Recommendations:
For ABB ASPECT-Enterprise versions through 3.08.03, update to a version later than 3.08.03 to resolve the issue.
For ABB NEXUS Series versions through 3.08.03, update to a version later than 3.08.03 to resolve the issue.
For ABB MATRIX Series versions through 3.08.03, update to a version later than 3.08.03 to resolve the issue.
Fix
Cleartext Storage of Sensitive Information
Using Hardcoded Credentials
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Aspect-Enterprise
Matrix Series
Nexus Series