CVE-2021-22284

SECURITY - OPC Server for AC 800M - Remote Code Execution Vulnerability

CVSS 8.4 HIGHEPSS 0.8%CWE-732

Incorrect Permission Assignment for Critical Resource vulnerability in OPC Server for AC 800M allows an attacker to execute arbitrary code in the node running the AC800M OPC Server.

CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H

Affected products

ABB · 800xA, Control Software for AC 800M OPC Server for AC 800M ABB · Compact Product Suite - Control and I/O OPC Server for AC 800M ABB · Control Builder Safe, version 1.x OPC Server for AC 800M ABB · Control Builder Safe, version 2.0 OPC Server for AC 800M

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://search.abb.com/library/Download.aspx?DocumentID=7PAA000908&LanguageCode=en&DocumentPartId=&Action=Launch