CVE-2024-3036

Summary

Improper Input Validation vulnerability in ABB 800xA Base. An attacker who successfully exploited this vulnerability could cause services to crash by sending specifically crafted messages. This issue affects 800xA Base: from 6.0.0 through 6.1.1-2.

Affected Software

VendorProductVersion RangeStatus
ABB800xA Base6.0.0 <= 6.1.1-2affected

Weaknesses

  • CWE-1284: CWE-1284: Improper Validation of Specified Quantity in Input

Workarounds

The system can be protected from network-based exploits of this vulnerability by enabling IPSec according to existing user documentation.

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References