Vulnerability Details CVE-2024-11317
Session Fixation vulnerabilities allow an attacker to fix a users session identifier before login providing an opportunity for session takeover on a product.
Affected products:
ABB ASPECT - Enterprise v3.08.02;
NEXUS Series v3.08.02;
MATRIX Series v3.08.02
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 17.3%
CVSS Severity
CVSS v3 Score 10.0
Products affected by CVE-2024-11317
-
cpe:2.3:h:abb:aspect-ent-12:-
-
cpe:2.3:h:abb:aspect-ent-256:-
-
cpe:2.3:h:abb:aspect-ent-2:-
-
cpe:2.3:h:abb:aspect-ent-96:-
-
cpe:2.3:h:abb:matrix-11:-
-
cpe:2.3:h:abb:matrix-216:-
-
cpe:2.3:h:abb:matrix-232:-
-
cpe:2.3:h:abb:matrix-264:-
-
cpe:2.3:h:abb:matrix-296:-
-
cpe:2.3:h:abb:nexus-2128-a:-
-
cpe:2.3:h:abb:nexus-2128-f:-
-
cpe:2.3:h:abb:nexus-2128-g:-
-
cpe:2.3:h:abb:nexus-2128:-
-
cpe:2.3:h:abb:nexus-264-a:-
-
cpe:2.3:h:abb:nexus-264-f:-
-
cpe:2.3:h:abb:nexus-264-g:-
-
cpe:2.3:h:abb:nexus-264:-
-
cpe:2.3:h:abb:nexus-3-2128:-
-
cpe:2.3:h:abb:nexus-3-264:-
-
cpe:2.3:o:abb:aspect-ent-12_firmware:-
-
cpe:2.3:o:abb:aspect-ent-12_firmware:3.0.0
-
cpe:2.3:o:abb:aspect-ent-12_firmware:3.07.01
-
cpe:2.3:o:abb:aspect-ent-12_firmware:3.07.02
-
cpe:2.3:o:abb:aspect-ent-12_firmware:3.08.01
-
cpe:2.3:o:abb:aspect-ent-12_firmware:3.08.02
-
cpe:2.3:o:abb:aspect-ent-256_firmware:-
-
cpe:2.3:o:abb:aspect-ent-256_firmware:3.0.0
-
cpe:2.3:o:abb:aspect-ent-256_firmware:3.07.01
-
cpe:2.3:o:abb:aspect-ent-256_firmware:3.07.02
-
cpe:2.3:o:abb:aspect-ent-256_firmware:3.08.01
-
cpe:2.3:o:abb:aspect-ent-256_firmware:3.08.02
-
cpe:2.3:o:abb:aspect-ent-2_firmware:-
-
cpe:2.3:o:abb:aspect-ent-2_firmware:3.0.0
-
cpe:2.3:o:abb:aspect-ent-2_firmware:3.07.01
-
cpe:2.3:o:abb:aspect-ent-2_firmware:3.07.02
-
cpe:2.3:o:abb:aspect-ent-2_firmware:3.08.01
-
cpe:2.3:o:abb:aspect-ent-2_firmware:3.08.02
-
cpe:2.3:o:abb:aspect-ent-96_firmware:-
-
cpe:2.3:o:abb:aspect-ent-96_firmware:3.0.0
-
cpe:2.3:o:abb:aspect-ent-96_firmware:3.07.01
-
cpe:2.3:o:abb:aspect-ent-96_firmware:3.07.02
-
cpe:2.3:o:abb:aspect-ent-96_firmware:3.08.01
-
cpe:2.3:o:abb:aspect-ent-96_firmware:3.08.02
-
cpe:2.3:o:abb:matrix-11_firmware:-
-
cpe:2.3:o:abb:matrix-11_firmware:3.0.0
-
cpe:2.3:o:abb:matrix-11_firmware:3.07.01
-
cpe:2.3:o:abb:matrix-11_firmware:3.07.02
-
cpe:2.3:o:abb:matrix-11_firmware:3.08.01
-
cpe:2.3:o:abb:matrix-11_firmware:3.08.02
-
cpe:2.3:o:abb:matrix-216_firmware:-
-
cpe:2.3:o:abb:matrix-216_firmware:3.0.0
-
cpe:2.3:o:abb:matrix-216_firmware:3.07.01
-
cpe:2.3:o:abb:matrix-216_firmware:3.07.02
-
cpe:2.3:o:abb:matrix-216_firmware:3.08.01
-
cpe:2.3:o:abb:matrix-216_firmware:3.08.02
-
cpe:2.3:o:abb:matrix-232_firmware:-
-
cpe:2.3:o:abb:matrix-232_firmware:3.0.0
-
cpe:2.3:o:abb:matrix-232_firmware:3.07.01
-
cpe:2.3:o:abb:matrix-232_firmware:3.07.02
-
cpe:2.3:o:abb:matrix-232_firmware:3.08.01
-
cpe:2.3:o:abb:matrix-232_firmware:3.08.02
-
cpe:2.3:o:abb:matrix-264_firmware:-
-
cpe:2.3:o:abb:matrix-264_firmware:3.0.0
-
cpe:2.3:o:abb:matrix-264_firmware:3.07.01
-
cpe:2.3:o:abb:matrix-264_firmware:3.07.02
-
cpe:2.3:o:abb:matrix-264_firmware:3.08.01
-
cpe:2.3:o:abb:matrix-264_firmware:3.08.02
-
cpe:2.3:o:abb:matrix-296_firmware:-
-
cpe:2.3:o:abb:matrix-296_firmware:3.0.0
-
cpe:2.3:o:abb:matrix-296_firmware:3.07.01
-
cpe:2.3:o:abb:matrix-296_firmware:3.07.02
-
cpe:2.3:o:abb:matrix-296_firmware:3.08.01
-
cpe:2.3:o:abb:matrix-296_firmware:3.08.02
-
cpe:2.3:o:abb:nexus-2128-a_firmware:-
-
cpe:2.3:o:abb:nexus-2128-a_firmware:3.0.0
-
cpe:2.3:o:abb:nexus-2128-a_firmware:3.07.01
-
cpe:2.3:o:abb:nexus-2128-a_firmware:3.07.02
-
cpe:2.3:o:abb:nexus-2128-a_firmware:3.08.01
-
cpe:2.3:o:abb:nexus-2128-a_firmware:3.08.02
-
cpe:2.3:o:abb:nexus-2128-f_firmware:-
-
cpe:2.3:o:abb:nexus-2128-f_firmware:3.0.0
-
cpe:2.3:o:abb:nexus-2128-f_firmware:3.07.01
-
cpe:2.3:o:abb:nexus-2128-f_firmware:3.07.02
-
cpe:2.3:o:abb:nexus-2128-f_firmware:3.08.01
-
cpe:2.3:o:abb:nexus-2128-f_firmware:3.08.02
-
cpe:2.3:o:abb:nexus-2128-g_firmware:-
-
cpe:2.3:o:abb:nexus-2128-g_firmware:3.0.0
-
cpe:2.3:o:abb:nexus-2128-g_firmware:3.07.01
-
cpe:2.3:o:abb:nexus-2128-g_firmware:3.07.02
-
cpe:2.3:o:abb:nexus-2128-g_firmware:3.08.01
-
cpe:2.3:o:abb:nexus-2128-g_firmware:3.08.02
-
cpe:2.3:o:abb:nexus-2128_firmware:-
-
cpe:2.3:o:abb:nexus-2128_firmware:3.0.0
-
cpe:2.3:o:abb:nexus-2128_firmware:3.07.01
-
cpe:2.3:o:abb:nexus-2128_firmware:3.07.02
-
cpe:2.3:o:abb:nexus-2128_firmware:3.08.01
-
cpe:2.3:o:abb:nexus-2128_firmware:3.08.02
-
cpe:2.3:o:abb:nexus-264-a_firmware:-
-
cpe:2.3:o:abb:nexus-264-a_firmware:3.0.0
-
cpe:2.3:o:abb:nexus-264-a_firmware:3.07.01
-
cpe:2.3:o:abb:nexus-264-a_firmware:3.07.02
-
cpe:2.3:o:abb:nexus-264-a_firmware:3.08.01
-
cpe:2.3:o:abb:nexus-264-a_firmware:3.08.02
-
cpe:2.3:o:abb:nexus-264-f_firmware:-
-
cpe:2.3:o:abb:nexus-264-f_firmware:3.0.0
-
cpe:2.3:o:abb:nexus-264-f_firmware:3.07.01
-
cpe:2.3:o:abb:nexus-264-f_firmware:3.07.02
-
cpe:2.3:o:abb:nexus-264-f_firmware:3.08.01
-
cpe:2.3:o:abb:nexus-264-f_firmware:3.08.02
-
cpe:2.3:o:abb:nexus-264-g_firmware:-
-
cpe:2.3:o:abb:nexus-264-g_firmware:3.0.0
-
cpe:2.3:o:abb:nexus-264-g_firmware:3.07.01
-
cpe:2.3:o:abb:nexus-264-g_firmware:3.07.02
-
cpe:2.3:o:abb:nexus-264-g_firmware:3.08.01
-
cpe:2.3:o:abb:nexus-264-g_firmware:3.08.02
-
cpe:2.3:o:abb:nexus-264_firmware:-
-
cpe:2.3:o:abb:nexus-264_firmware:3.0.0
-
cpe:2.3:o:abb:nexus-264_firmware:3.07.01
-
cpe:2.3:o:abb:nexus-264_firmware:3.07.02
-
cpe:2.3:o:abb:nexus-264_firmware:3.08.01
-
cpe:2.3:o:abb:nexus-264_firmware:3.08.02
-
cpe:2.3:o:abb:nexus-3-2128_firmware:-
-
cpe:2.3:o:abb:nexus-3-2128_firmware:3.0.0
-
cpe:2.3:o:abb:nexus-3-2128_firmware:3.07.01
-
cpe:2.3:o:abb:nexus-3-2128_firmware:3.07.02
-
cpe:2.3:o:abb:nexus-3-2128_firmware:3.08.01
-
cpe:2.3:o:abb:nexus-3-2128_firmware:3.08.02
-
cpe:2.3:o:abb:nexus-3-264_firmware:-
-
cpe:2.3:o:abb:nexus-3-264_firmware:3.0.0
-
cpe:2.3:o:abb:nexus-3-264_firmware:3.07.01
-
cpe:2.3:o:abb:nexus-3-264_firmware:3.07.02
-
cpe:2.3:o:abb:nexus-3-264_firmware:3.08.01
-
cpe:2.3:o:abb:nexus-3-264_firmware:3.08.02