How severe is CVE-2020-24685?

CVE-2020-24685 has a CVSS v3 score of 8.6 (HIGH).

CVE-2020-24685

8.6HIGH

An unauthenticated specially crafted packet sent by an attacker over the network will cause a denial-of-service (DoS) vulnerability. Vulnerability allows attacker to stop the PLC. After stopping (ERR

Veröffentlicht: 2/9/2021Aktualisiert: 11/21/2024

Beschreibung

An unauthenticated specially crafted packet sent by an attacker over the network will cause a denial-of-service (DoS) vulnerability. Vulnerability allows attacker to stop the PLC. After stopping (ERR LED flashing red), physical access to the PLC is required in order to restart the application. This issue affects: ABB AC500 V2 products with onboard Ethernet version 2.8.4 and prior versions.

KI-AnalyseKI-gestützt

Betroffene Produkte

abbac500_cpu_firmware

abbpm573-eth

2.0

abbpm583-eth

2.0

Referenzen

https://search.abb.com/library/Download.aspx?DocumentID=3ADR010667&LanguageCode=en&DocumentPartId=&Action=Launch
PatchVendor Advisory
https://search.abb.com/library/Download.aspx?DocumentID=3ADR010667&LanguageCode=en&DocumentPartId=&Action=Launch
PatchVendor Advisory