VYPR
Unrated severityNVD Advisory· Published Feb 9, 2021· Updated Aug 4, 2024

AC500 V2 unauthenticated crafter packet vulnerability

CVE-2020-24685

Description

An unauthenticated specially crafted packet sent by an attacker over the network will cause a denial-of-service (DoS) vulnerability. Vulnerability allows attacker to stop the PLC. After stopping (ERR LED flashing red), physical access to the PLC is required in order to restart the application. This issue affects: ABB AC500 V2 products with onboard Ethernet version 2.8.4 and prior versions.

Affected products

2
  • Abb/AC500 V2llm-fuzzy
    Range: <=2.8.4
  • ABB/AC500 V2 products with onboard Ethernetv5
    Range: version 2.8.4 and prior versions

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.