VYPR
Unrated severityNVD Advisory· Published Apr 22, 2020· Updated Aug 4, 2024

ABB System 800xA Information Manager Remote Code Execution

CVE-2020-8477

Description

The installations for ABB System 800xA Information Manager versions 5.1, 6.0 to 6.0.3.2 and 6.1 wrongly contain an auxiliary component. An attacker is able to use this for an XSS-like attack to an authenticated local user, which might lead to execution of arbitrary code.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.