CVE-2024-1914
May 14, 2024, 7:18 p.m.
Tags
CVSS Score
Product(s) Impacted
RobotWare IRC5
- 6.0 - 6.15.05, excluding 6.10.10 and 6.13.07
RobotWare OmniCore
- 7.0 - 7.13.99
ABB IRC5 RobotWare
- < 6.15.06, excluding 6.10.10 and 6.13.07
ABB OmniCore RobotWare
- < 7.14
Description
An attacker who successfully exploited these vulnerabilities could cause the robot to stop, make the robot controller inaccessible. The vulnerability could potentially be exploited to perform unauthorized actions by an attacker. This vulnerability arises under specific condition when specially crafted message is processed by the system. Below are reported vulnerabilities in the Robot Ware versions. * IRC5- RobotWare 6 < 6.15.06 except 6.10.10, and 6.13.07 * OmniCore- RobotWare 7 < 7.14
Weaknesses
Date
Published: May 14, 2024, 4:16 p.m.
Last Modified: May 14, 2024, 7:18 p.m.
Status : Awaiting Analysis
CVE has been recently published to the CVE List and has been received by the NVD.
More infoSource
cybersecurity@ch.abb.com
CVSS Data
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
Base Score
Exploitability Score
Impact Score
Base Severity
MEDIUMCVSS Vector String
The CVSS vector string provides an in-depth view of the vulnerability metrics.
View Vector StringCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H