Assigner | ABB |
Reserved | 2024-04-19 |
Published | 2024-06-05 |
Updated | 2024-06-10 |
Description
FDSK Leak in ABB, Busch-Jaeger, FTS Display (version 1.00) and BCU (version 1.3.0.33) allows attacker to take control via access to local KNX Bus-System
CRITICAL: 9.6 | CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:L/I:H/A:H |
HIGH: 7.3 | CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:L/VI:H/VA:H/SC:L/SI:H/SA:H/S:N/AU:N/V:D/RE:M/U:Green |
Problem types
CWE-200 Exposure of Sensitive Information to an Unauthorized Actor
Product status
Default status
unaffected
1.00
affected
Default status
unaffected
1.00
affected
Default status
unaffected
1.00
affected
Default status
unaffected
1.00
affected
Default status
unaffected
1.00
affected
Default status
unaffected
1.00
affected
Default status
unaffected
1.00
affected
Default status
unaffected
1.00
affected
Default status
unaffected
1.00
affected
Default status
unaffected
1.3.0.33
affected
Default status
unaffected
1.3.0.33
affected
Default status
unaffected
1.3.0.33
affected
References
https://search.abb.com/library/Download.aspx?DocumentID=9AKK108464A0803&LanguageCode=en&DocumentPartId=&Action=Launch
cve.org CVE-2024-4008
nvd.nist.gov CVE-2024-4008
Download JSON