CVE-2021-22284
8.4
CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H
Summary
Incorrect Permission Assignment for Critical Resource vulnerability in OPC Server for AC 800M allows an attacker to execute arbitrary code in the node running the AC800M OPC Server.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| ABB | 800xA, Control Software for AC 800M OPC Server for AC 800M | unspecified <= 5.1.0-x | affected |
| ABB | 800xA, Control Software for AC 800M OPC Server for AC 800M | unspecified <= 5.1.1-x | affected |
| ABB | 800xA, Control Software for AC 800M OPC Server for AC 800M | 6.0.0-1 | affected |
| ABB | 800xA, Control Software for AC 800M OPC Server for AC 800M | 6.0.0-2 | affected |
| ABB | 800xA, Control Software for AC 800M OPC Server for AC 800M | 6.0.0-3 | affected |
| ABB | Control Builder Safe, version 1.x OPC Server for AC 800M | 5.1.1-1 | affected |
| ABB | Control Builder Safe, version 2.0 OPC Server for AC 800M | 6.0.0-1 | affected |
| ABB | Compact Product Suite - Control and I/O OPC Server for AC 800M | unspecified <= 5.1.0-x | affected |
| ABB | Compact Product Suite - Control and I/O OPC Server for AC 800M | unspecified <= 5.1.1-x | affected |
| ABB | Compact Product Suite - Control and I/O OPC Server for AC 800M | unspecified <= 6.0.0-x | affected |
Weaknesses
- CWE-732: CWE-732 Incorrect Permission Assignment for Critical Resource
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.