CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-11640

AdvaBuild uses a command queue to launch certain operations. An attacker who gains access to the command queue can use it to launch an attack by running any executable on the AdvaBuild node. The executables that can be run are not limited to AdvaBuild specific executables. Improper Privilege Management vulnerability in ABB Advant MOD 300 AdvaBuild.This issue affects Advant MOD 300 AdvaBuild: from 3.0 through 3.7 SP2.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 42.1%

CVSS Severity

CVSS v3 Score 8.8

References

https://search.abb.com/library/Download.aspx?DocumentID=3BUA003421&LanguageCode=en&DocumentPartId=&Action=Launch&_ga=2.200044199.882581162.1721753430-284724496.1718609177
https://search.abb.com/library/Download.aspx?DocumentID=3BUA003421&LanguageCode=en&DocumentPartId=&Action=Launch&_ga=2.200044199.882581162.1721753430-284724496.1718609177

Products affected by CVE-2020-11640

Abb » Advabuild » Version: 3.0

cpe:2.3:a:abb:advabuild:3.0
Abb » Advabuild » Version: 3.7

cpe:2.3:a:abb:advabuild:3.7

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-11640

Products

Pricing

Contact Us