Sign-up

ID

VAR-202008-1324


TITLE

ABB industrial robot teach pendant has encryption algorithm vulnerability

Trust: 0.6

sources: CNVD: CNVD-2020-49104

DESCRIPTION

ABB (China) Co., Ltd. is committed to providing solutions for customers in the industrial, energy, power, transportation and construction industries. The ABB industrial robot teach pendant has an encryption algorithm vulnerability. Attackers can use the loopholes to crack the user password of ABB industrial robots.

Trust: 0.6

sources: CNVD: CNVD-2020-49104

IOT TAXONOMY

category:['IoT', 'ICS']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2020-49104

AFFECTED PRODUCTS

vendor:abbmodel:industrial robot teach pendant flex pendantscope: - version: -

Trust: 0.6

sources: CNVD: CNVD-2020-49104

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD: CNVD-2020-49104
value: MEDIUM

Trust: 0.6

CNVD: CNVD-2020-49104
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

sources: CNVD: CNVD-2020-49104

PATCH

title:ABB industrial robot teach pendant has encryption algorithm vulnerabilityurl:https://www.cnvd.org.cn/patchinfo/show/225999

Trust: 0.6

sources: CNVD: CNVD-2020-49104

EXTERNAL IDS

db:CNVDid:CNVD-2020-49104

Trust: 0.6

sources: CNVD: CNVD-2020-49104

SOURCES

db:CNVDid:CNVD-2020-49104

LAST UPDATE DATE

2022-05-04T09:50:11.665000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2020-49104date:2020-08-28T00:00:00

SOURCES RELEASE DATE

db:CNVDid:CNVD-2020-49104date:2020-08-30T00:00:00