VYPR
Unrated severityNVD Advisory· Published Jun 5, 2023· Updated Jan 8, 2025

Privilege escalation to root

CVE-2023-0635

Description

Improper Privilege Management vulnerability in ABB Ltd. ASPECT®-Enterprise on ASPECT®-Enterprise, Linux (2CQG103201S3021, 2CQG103202S3021, 2CQG103203S3021, 2CQG103204S3021 modules), ABB Ltd. NEXUS Series on NEXUS Series, Linux (2CQG100102R2021, 2CQG100104R2021, 2CQG100105R2021, 2CQG100106R2021, 2CQG100110R2021, 2CQG100112R2021, 2CQG100103R2021, 2CQG100107R2021, 2CQG100108R2021, 2CQG100109R2021, 2CQG100111R2021, 2CQG100113R2021 modules), ABB Ltd. MATRIX Series on MATRIX Series, Linux (2CQG100102R1021, 2CQG100103R1021, 2CQG100104R1021, 2CQG100105R1021, 2CQG100106R1021 modules) allows Privilege Escalation.This issue affects ASPECT®-Enterprise: from 3.0;0 before 3.07.01; NEXUS Series: from 3.0;0 before 3.07.01; MATRIX Series: from 3.0;0 before 3.07.01.

Affected products

6
  • Range: >=3.0.0, <3.07.01
  • Abb/NEXUS Seriesllm-fuzzy
    Range: >=3.0.0, <3.07.01
  • Range: >=3.0.0, <3.07.01
  • ABB Ltd./ASPECT®-Enterprisev5
    Range: 3.0;0
  • ABB Ltd./MATRIX Seriesv5
    Range: 3.0;0
  • ABB Ltd./NEXUS Seriesv5
    Range: 3.0;0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.