CVE-2023-0228

Summary

Improper Authentication vulnerability in ABB Symphony Plus S+ Operations.This issue affects Symphony Plus S+ Operations: from 2.X through 2.1 SP2, 2.2, from 3.X through 3.3 SP1, 3.3 SP2.

Affected Software

VendorProductVersion RangeStatus
ABBSymphony Plus S+ Operations2.x <= 2.1 SP2affected
ABBSymphony Plus S+ Operations2.2affected
ABBSymphony Plus S+ Operations3.x <= 3.3 SP1affected
ABBSymphony Plus S+ Operations3.3 SP2affected

Weaknesses

  • CWE-287: CWE-287 Improper Authentication

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References