CVE-2021-22277

Improper Input Validation vulnerability in ABB 800xA, Control Software for AC 800M, Control Builder Safe, Compact Product Suite - Control and I/O, ABB Base Software for SoftControl allows an attacker to cause the denial of service.

CVSS v3 7.5 HIGH
CVSS v2.0 7.8 HIGH

7.5^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

7.8^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:N/I:N/A:C

Exploitability : 10.0 / Impact : 6.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact COMPLETE

References

Link	Resource
https://search.abb.com/library/Download.aspx?DocumentID=7PAA001499&LanguageCode=en&DocumentPartId=&Action=Launch	Vendor Advisory
https://search.abb.com/library/Download.aspx?DocumentID=7PAA001499&LanguageCode=en&DocumentPartId=&Action=Launch	Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:abb:800xa:::::::ac_800m:*
	cpe:2.3:a:abb:800xa:::::::ac_800m:*
	cpe:2.3:a:abb:800xa:::::::ac_800m:*
	cpe:2.3:a:abb:800xa:::::::ac_800m:*
	cpe:2.3:a:abb:base_software::::::softcontrol::*
	cpe:2.3:a:abb:base_software::::::softcontrol::*
	cpe:2.3:a:abb:base_software::::::softcontrol::*
	cpe:2.3:a:abb:base_software::::::softcontrol::*
	cpe:2.3:a:abb:compact_product_suite::::::::
	cpe:2.3:a:abb:compact_product_suite::::::::
	cpe:2.3:a:abb:compact_product_suite::::::::
	cpe:2.3:a:abb:compact_product_suite::::::::
	cpe:2.3:a:abb:control_builder_safe::::::::

History

21 Nov 2024, 05:49

Type	Values Removed	Values Added
References	~~() https://search.abb.com/library/Download.aspx?DocumentID=7PAA001499&LanguageCode=en&DocumentPartId=&Action=Launch - Vendor Advisory~~	() https://search.abb.com/library/Download.aspx?DocumentID=7PAA001499&LanguageCode=en&DocumentPartId=&Action=Launch - Vendor Advisory

11 Apr 2022, 14:54

Type	Values Removed	Values Added
References	~~(MISC) https://search.abb.com/library/Download.aspx?DocumentID=7PAA001499&LanguageCode=en&DocumentPartId=&Action=Launch -~~	(MISC) https://search.abb.com/library/Download.aspx?DocumentID=7PAA001499&LanguageCode=en&DocumentPartId=&Action=Launch - Vendor Advisory
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : 7.8 v3 : 7.5
CWE		CWE-20
CPE		cpe:2.3:a:abb:control_builder_safe:::::::: cpe:2.3:a:abb:base_software::::::softcontrol::* cpe:2.3:a:abb:compact_product_suite:::::::: cpe:2.3:a:abb:800xa:::::::ac_800m:*

01 Apr 2022, 23:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2022-04-01 23:15

Updated : 2024-11-21 05:49

NVD link : CVE-2021-22277

Mitre link : CVE-2021-22277

CVE.ORG link : CVE-2021-22277

JSON object : View

Products Affected

abb

control_builder_safe
base_software
compact_product_suite
800xa

CWE

CWE-20

Improper Input Validation

7.5 /10

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

7.8 /10

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact COMPLETE

JSON object

Attach tags to CVE-2021-22277

7.5^/10

7.8^/10

Attach tags to `CVE-2021-22277`