CVE-2020-24686

The vulnerabilities can be exploited to cause the web visualization component of the PLC to stop and not respond, leading to genuine users losing remote visibility of the PLC state. If a user attempts to login to the PLC while this vulnerability is exploited, the PLC will show an error state and refuse connections to Automation Builder. The execution of the PLC application is not affected by this vulnerability. This issue affects ABB AC500 V2 products with onboard Ethernet.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:abb:pm554_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm554:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:abb:pm556_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm556:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:abb:pm564_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm564:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:abb:pm566_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm566:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:abb:pm572_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm572:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND
cpe:2.3:o:abb:pm573_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:abb:pm573:-:*:*:*:*:*:*:*

Information

Published : 2021-02-26 08:15

Updated : 2021-03-05 06:13


NVD link : CVE-2020-24686

Mitre link : CVE-2020-24686


JSON object : View

CWE
CWE-400

Uncontrolled Resource Consumption

Advertisement

dedicated server usa

Products Affected

abb

  • pm554
  • pm564
  • pm572
  • pm573
  • pm564_firmware
  • pm556_firmware
  • pm556
  • pm566
  • pm573_firmware
  • pm566_firmware
  • pm554_firmware
  • pm572_firmware