Unrated severityNVD Advisory· Published Apr 22, 2020· Updated Aug 4, 2024
ABB System 800xA Information Manager Remote Code Execution
CVE-2020-8477
Description
The installations for ABB System 800xA Information Manager versions 5.1, 6.0 to 6.0.3.2 and 6.1 wrongly contain an auxiliary component. An attacker is able to use this for an XSS-like attack to an authenticated local user, which might lead to execution of arbitrary code.
Affected products
25.1, 6.0–6.0.3.2, 6.1+ 1 more
- (no CPE)range: 5.1, 6.0–6.0.3.2, 6.1
- (no CPE)range: 5
Patches
Vulnerability mechanics
References
1- search.abb.com/library/Download.aspxmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.