Vulnerability Details CVE-2023-0636
Improper Input Validation vulnerability in ABB Ltd. ASPECT®-Enterprise on ASPECT®-Enterprise, Linux (2CQG103201S3021, 2CQG103202S3021, 2CQG103203S3021, 2CQG103204S3021 modules), ABB Ltd. NEXUS Series on NEXUS Series, Linux (2CQG100102R2021, 2CQG100104R2021, 2CQG100105R2021, 2CQG100106R2021, 2CQG100110R2021, 2CQG100112R2021, 2CQG100103R2021, 2CQG100107R2021, 2CQG100108R2021, 2CQG100109R2021, 2CQG100111R2021, 2CQG100113R2021 modules), ABB Ltd. MATRIX Series on MATRIX Series, Linux (2CQG100102R1021, 2CQG100103R1021, 2CQG100104R1021, 2CQG100105R1021, 2CQG100106R1021 modules) allows Command Injection.This issue affects ASPECT®-Enterprise: from 3.0;0 before 3.07.0; NEXUS Series: from 3.0;0 before 3.07.0; MATRIX Series: from 3.0;0 before 3.07.1.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 32.9%
CVSS Severity
CVSS v3 Score 7.2
References
Products affected by CVE-2023-0636
-
cpe:2.3:h:abb:aspect-ent-12:-
-
cpe:2.3:h:abb:aspect-ent-256:-
-
cpe:2.3:h:abb:aspect-ent-2:-
-
cpe:2.3:h:abb:aspect-ent-96:-
-
cpe:2.3:h:abb:matrix-11:-
-
cpe:2.3:h:abb:matrix-216:-
-
cpe:2.3:h:abb:matrix-232:-
-
cpe:2.3:h:abb:matrix-264:-
-
cpe:2.3:h:abb:matrix-296:-
-
cpe:2.3:h:abb:nexus-2128-a:-
-
cpe:2.3:h:abb:nexus-2128-f:-
-
cpe:2.3:h:abb:nexus-2128-g:-
-
cpe:2.3:h:abb:nexus-2128:-
-
cpe:2.3:h:abb:nexus-264-a:-
-
cpe:2.3:h:abb:nexus-264-f:-
-
cpe:2.3:h:abb:nexus-264-g:-
-
cpe:2.3:h:abb:nexus-264:-
-
cpe:2.3:h:abb:nexus-3-2128:-
-
cpe:2.3:h:abb:nexus-3-264:-
-
cpe:2.3:o:abb:aspect-ent-12_firmware:3.0.0
-
cpe:2.3:o:abb:aspect-ent-256_firmware:3.0.0
-
cpe:2.3:o:abb:aspect-ent-2_firmware:3.0.0
-
cpe:2.3:o:abb:aspect-ent-96_firmware:3.0.0
-
cpe:2.3:o:abb:matrix-11_firmware:3.0.0
-
cpe:2.3:o:abb:matrix-216_firmware:3.0.0
-
cpe:2.3:o:abb:matrix-232_firmware:3.0.0
-
cpe:2.3:o:abb:matrix-264_firmware:3.0.0
-
cpe:2.3:o:abb:matrix-296_firmware:3.0.0
-
cpe:2.3:o:abb:nexus-2128-a_firmware:3.0.0
-
cpe:2.3:o:abb:nexus-2128-f_firmware:3.0.0
-
cpe:2.3:o:abb:nexus-2128-g_firmware:3.0.0
-
cpe:2.3:o:abb:nexus-2128_firmware:3.0.0
-
cpe:2.3:o:abb:nexus-264-a_firmware:3.0.0
-
cpe:2.3:o:abb:nexus-264-f_firmware:3.0.0
-
cpe:2.3:o:abb:nexus-264-g_firmware:3.0.0
-
cpe:2.3:o:abb:nexus-264_firmware:3.0.0
-
cpe:2.3:o:abb:nexus-3-2128_firmware:3.0.0
-
cpe:2.3:o:abb:nexus-3-264_firmware:3.0.0