Devices at Risk of Service Disruptions Due to Denial of Service Vulnerabilities
CVE-2024-48844

6.5MEDIUM

Key Information:

Vendor: Abb
Status: Aspect-enterprise; Nexus Series; Matrix Series
Vendor: CVE Published:; 5 December 2024

What is CVE-2024-48844?

Recent findings indicate denial of service vulnerabilities in ABB products that could lead to significant disruptions in device services. This vulnerability impacts the ABB ASPECT - Enterprise v3.08.02, NEXUS Series v3.08.02, and MATRIX Series v3.08.02, potentially affecting availability and performance. Users of these systems should assess their security posture and implement necessary controls to mitigate risks associated with these vulnerabilities.

Affected Version(s)

ASPECT-Enterprise Linux 0 <= 3.08.02

MATRIX Series Linux 0 <= 3.08.02

NEXUS Series Linux initial <= 3.08.02

References

https://search.abb.com/library/Download.aspx?DocumentID=9...

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Dec 5, 2024
Vulnerability Reserved
Oct 8, 2024

Credit

ABB likes to thank Gjoko Krstikj, Zero Science Lab, for reporting the vulnerabilities in responsible disclosure

Abb

What is CVE-2024-48844?

Affected Version(s)

References

CVSS V3.1

Timeline

Credit