abb ASPECT-Enterprise v3.07.02 - 3 CVEs

CVE-2024-51555

Default Credentail vulnerabilities allows access to an Aspect device using publicly available default credentials since the system does not require the installer to change default credentials. Affected products: ABB ASPECT - Enterprise v3.07.02; NEXUS Series v3.07.02; MATRIX Series v3.07.02

CRITICAL CVSS 9.8 Published Dec 05, 2024

CVE-2024-51551

Default Credentail vulnerabilities in ASPECT on Linux allows access to the product using publicly available default credentials. Affected products: ABB ASPECT - Enterprise v3.07.02; NEXUS Series v3.07.02; MATRIX Series v3.07.02

CRITICAL CVSS 10.0 Published Dec 05, 2024

CVE-2024-48845

Weak Password Reset Rules vulnerabilities where found providing a potiential for the storage of weak passwords that could facilitate unauthorized admin/application access. Affected products: ABB ASPECT - Enterprise v3.07.02; NEXUS Series v3.07.02; MATRIX Series v3.07.02

UNKNOWN CVSS 9.4 Published Dec 05, 2024

Version 3.07.02

Known Vulnerabilities

CVE-2024-51555

CVE-2024-51551

CVE-2024-48845