Vulnerabilities > ABB > Aspect ENT 12 Firmware > 3.08.02

DATE CVE VULNERABILITY TITLE RISK
2024-12-05 CVE-2024-48840 Unspecified vulnerability in ABB products
Unauthorized Access vulnerabilities allow Remote Code Execution.  Affected products: ABB ASPECT - Enterprise v3.08.02; NEXUS Series v3.08.02; MATRIX Series v3.08.02
network
low complexity
abb
critical
9.8
2024-12-05 CVE-2024-48843 SQL Injection vulnerability in ABB products
Denial of Service vulnerabilities where found providing a potiential for device service disruptions.  Affected products: ABB ASPECT - Enterprise v3.08.02; NEXUS Series v3.08.02; MATRIX Series v3.08.02
network
low complexity
abb CWE-89
7.5
2024-12-05 CVE-2024-48844 Unspecified vulnerability in ABB products
Denial of Service vulnerabilities where found providing a potiential for device service disruptions.  Affected products: ABB ASPECT - Enterprise v3.08.02; NEXUS Series v3.08.02; MATRIX Series v3.08.02
network
low complexity
abb
6.5
2024-12-05 CVE-2024-48846 Unspecified vulnerability in ABB products
Cross Site Request Forgery vulnerabilities where found providing a potiential for exposing sensitive information or changing system settings.  Affected products: ABB ASPECT - Enterprise v3.08.02; NEXUS Series v3.08.02; MATRIX Series v3.08.02
network
low complexity
abb
7.3
2024-12-05 CVE-2024-51541 Unspecified vulnerability in ABB products
Local File Inclusion vulnerabilities allow access to sensitive system information.  Affected products: ABB ASPECT - Enterprise v3.08.02; NEXUS Series v3.08.02; MATRIX Series v3.08.02
network
low complexity
abb
7.5
2024-12-05 CVE-2024-51543 Unspecified vulnerability in ABB products
Information Disclosure vulnerabilities allow access to application configuration information.  Affected products: ABB ASPECT - Enterprise v3.08.02; NEXUS Series v3.08.02; MATRIX Series v3.08.02
network
low complexity
abb
7.5
2024-12-05 CVE-2024-51545 Unspecified vulnerability in ABB products
Username Enumeration vulnerabilities allow access to application level username add, delete, modify and list functions.  Affected products: ABB ASPECT - Enterprise v3.08.02; NEXUS Series v3.08.02; MATRIX Series v3.08.02
network
low complexity
abb
critical
9.8
2024-12-05 CVE-2024-51548 Unspecified vulnerability in ABB products
Dangerous File Upload vulnerabilities allow upload of malicious scripts.  Affected products: ABB ASPECT - Enterprise v3.08.02; NEXUS Series v3.08.02; MATRIX Series v3.08.02
network
low complexity
abb
8.8
2024-12-05 CVE-2024-51549 Path Traversal vulnerability in ABB products
Absolute File Traversal vulnerabilities allows access and modification of un-intended resources.  Affected products: ABB ASPECT - Enterprise v3.08.02; NEXUS Series v3.08.02; MATRIX Series v3.08.02
network
low complexity
abb CWE-22
critical
9.4
2024-12-05 CVE-2024-51550 Unspecified vulnerability in ABB products
Data Validation / Data Sanitization vulnerabilities in Linux allows unvalidated and unsanitized data to be injected in an Aspect device.  Affected products: ABB ASPECT - Enterprise v3.08.02; NEXUS Series v3.08.02; MATRIX Series v3.08.02
network
low complexity
abb
critical
9.8