Unrated severityNVD Advisory· Published Feb 26, 2021· Updated Aug 4, 2024
AC500 V2 webserver denial of service vulnerability
CVE-2020-24686
Description
The vulnerabilities can be exploited to cause the web visualization component of the PLC to stop and not respond, leading to genuine users losing remote visibility of the PLC state. If a user attempts to login to the PLC while this vulnerability is exploited, the PLC will show an error state and refuse connections to Automation Builder. The execution of the PLC application is not affected by this vulnerability. This issue affects ABB AC500 V2 products with onboard Ethernet.
Affected products
2- ABB/AC500 V2 products with onboard Ethernetv5Range: All
Patches
Vulnerability mechanics
References
1- search.abb.com/library/Download.aspxmitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.