Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-48845

Weak Password Reset Rules vulnerabilities where found providing a potiential for the storage of weak passwords that could facilitate unauthorized admin/application access. Affected products: ABB ASPECT - Enterprise v3.07.02; NEXUS Series v3.07.02; MATRIX Series v3.07.02

Published

2024-12-05T13:15:06.820

Last Modified

2025-02-27T17:13:48.860

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 9.4 (CRITICAL)

Weaknesses

Type: Primary
CWE-521

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	abb	aspect-ent-2_firmware	< 3.08.03	Yes
Hardware	abb	aspect-ent-2	-	No
Operating System	abb	aspect-ent-256_firmware	< 3.08.03	Yes
Hardware	abb	aspect-ent-256	-	No
Operating System	abb	aspect-ent-96_firmware	< 3.08.03	Yes
Hardware	abb	aspect-ent-96	-	No
Operating System	abb	nexus-2128_firmware	< 3.08.03	Yes
Hardware	abb	nexus-2128	-	No
Operating System	abb	nexus-2128-a_firmware	< 3.08.03	Yes
Hardware	abb	nexus-2128-a	-	No
Operating System	abb	nexus-2128-f_firmware	< 3.08.03	Yes
Hardware	abb	nexus-2128-f	-	No
Operating System	abb	nexus-2128-g_firmware	< 3.08.03	Yes
Hardware	abb	nexus-2128-g	-	No
Operating System	abb	nexus-264_firmware	< 3.08.03	Yes
Hardware	abb	nexus-264	-	No
Operating System	abb	nexus-264-a_firmware	< 3.08.03	Yes
Hardware	abb	nexus-264-a	-	No
Operating System	abb	nexus-264-g_firmware	< 3.08.03	Yes
Hardware	abb	nexus-264-g	-	No
Operating System	abb	nexus-3-2128_firmware	< 3.08.03	Yes
Hardware	abb	nexus-3-2128	-	No
Operating System	abb	aspect-ent-12_firmware	≤ 3.07.02	Yes
Hardware	abb	aspect-ent-12	-	No
Operating System	abb	nexus-264-f_firmware	< 3.08.03	Yes
Hardware	abb	nexus-264-f	-	No
Operating System	abb	nexus-3-264_firmware	≤ 3.07.02	Yes
Hardware	abb	nexus-3-264	-	No
Operating System	abb	matrix-11_firmware	≤ 3.07.02	Yes
Hardware	abb	matrix-11	-	No
Operating System	abb	matrix-216_firmware	≤ 3.07.02	Yes
Hardware	abb	matrix-216	-	No
Operating System	abb	matrix-232_firmware	≤ 3.07.02	Yes
Hardware	abb	matrix-232	-	No
Operating System	abb	matrix-264_firmware	≤ 3.07.02	Yes
Hardware	abb	matrix-264	-	No
Operating System	abb	matrix-296_firmware	≤ 3.07.02	Yes
Hardware	abb	matrix-296	-	No

References

https://search.abb.com/library/Download.aspx?DocumentID=9AKK108469A7497&LanguageCode=en&DocumentPartId=&Action=Launch Vendor Advisory ([email protected])