CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-7229

The ABB CP635 HMI uses two different transmission methods to upgrade its firmware and its software components: "Utilization of USB/SD Card to flash the device" and "Remote provisioning process via ABB Panel Builder 600 over FTP." Neither of these transmission methods implements any form of encryption or authenticity checks against the new firmware HMI software binary files.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 25.6%

CVSS Severity

CVSS v3 Score 8.3

CVSS v2 Score 5.4

References

Products affected by CVE-2019-7229

Abb » Board Support Package Un31 » Version: Any

cpe:2.3:a:abb:board_support_package_un31:*
Abb » Cp620-Web » Version: N/A

cpe:2.3:h:abb:cp620-web:-
Abb » Cp620 » Version: N/A

cpe:2.3:h:abb:cp620:-
Abb » Cp630-Web » Version: N/A

cpe:2.3:h:abb:cp630-web:-
Abb » Cp630 » Version: N/A

cpe:2.3:h:abb:cp630:-
Abb » Cp635-B » Version: N/A

cpe:2.3:h:abb:cp635-b:-
Abb » Cp635-Web » Version: N/A

cpe:2.3:h:abb:cp635-web:-
Abb » Cp635 » Version: N/A

cpe:2.3:h:abb:cp635:-
Abb » Cp620-Web Firmware » Version: 1.76

cpe:2.3:o:abb:cp620-web_firmware:1.76
Abb » Cp620 Firmware » Version: 1.76

cpe:2.3:o:abb:cp620_firmware:1.76
Abb » Cp630-Web Firmware » Version: 1.76

cpe:2.3:o:abb:cp630-web_firmware:1.76
Abb » Cp630 Firmware » Version: 1.76

cpe:2.3:o:abb:cp630_firmware:1.76
Abb » Cp635-B Firmware » Version: 1.76

cpe:2.3:o:abb:cp635-b_firmware:1.76
Abb » Cp635-Web Firmware » Version: 1.76

cpe:2.3:o:abb:cp635-web_firmware:1.76
Abb » Cp635 Firmware » Version: 1.76

cpe:2.3:o:abb:cp635_firmware:1.76

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-7229

Products

Pricing

Contact Us