Vulnerability Details CVE-2021-22278
A certificate validation vulnerability in PCM600 Update Manager allows attacker to get unwanted software packages to be installed on computer which has PCM600 installed.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 2.5%
CVSS Severity
CVSS v3 Score 6.7
CVSS v2 Score 4.6
References
- https://search.abb.com/library/Download.aspx?DocumentID=2NGA001142&LanguageCode=en&DocumentPartId=&Action=Launch
- https://search.abb.com/library/Download.aspx?DocumentID=8DBD000056&LanguageCode=en&DocumentPartId=&Action=Launch
- https://search.abb.com/library/Download.aspx?DocumentID=2NGA001142&LanguageCode=en&DocumentPartId=&Action=Launch
- https://search.abb.com/library/Download.aspx?DocumentID=8DBD000056&LanguageCode=en&DocumentPartId=&Action=Launch
Products affected by CVE-2021-22278
-
cpe:2.3:a:abb:update_manager:2.1
-
cpe:2.3:a:abb:update_manager:2.1.0.4
-
cpe:2.3:a:abb:update_manager:2.10
-
cpe:2.3:a:abb:update_manager:2.2
-
cpe:2.3:a:abb:update_manager:2.2.0.1
-
cpe:2.3:a:abb:update_manager:2.2.0.2
-
cpe:2.3:a:abb:update_manager:2.2.0.23
-
cpe:2.3:a:abb:update_manager:2.3.0.60
-
cpe:2.3:a:abb:update_manager:2.4.20041.1
-
cpe:2.3:a:abb:update_manager:2.4.20119.2
-
cpe:2.3:a:abb:update_manager:2.7
-
cpe:2.3:a:abb:update_manager:2.8
-
cpe:2.3:a:abb:update_manager:2.9
-
cpe:2.3:h:hitachienergy:pcm600:-