VDB
3ADR011377
3ADR011377
PUBLISHED
CVSS 8.800000190734863 HIGH
An update is available that resolves a publicly reported vulnerability in the product versions listed as affected in the advisory. An attacker who successfully exploited these vulnerabilities could call shell functions (CVE-2023-6357), crash the PLC (CVE-2024-5000), crash the web server of the PLC (CVE-2024-8175), grant read access to files (CVE-2024-12429) or enable command execution (CVE-2024-12430). The vulnerabilities CVE-2023-6357, CVE-2024-12429 and CVE-2024-12430 require successful authentication.
Risk Scores
CVSS 3.1
8.800000190734863
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| AC500 V3 firmware version 3.8.0 | ||
| AC500 V3 products (PM5xxx) < 3.8.0 |
Exploit Intelligence
- https://search.abb.com/library/Download.aspx?DocumentID=3ADR011377&LanguageCode=en&DocumentPartId=&Action=Launch (circl)
- https://customers.codesys.com/index.php?eID=dumpFile&t=f&f=18027&token=43109051cf95d3445bc616e4efb8414336ebcc47&download= (circl)
- https://customers.codesys.com/index.php?eID=dumpFile&t=f&f=18355&token=e3e5a937ce72602bec39718ddc2f4ba6d983ccd1&download= (circl)
- https://customers.codesys.com/index.php?eID=dumpFile&t=f&f=18604&token=d5e1e2820ee63077b875b3bb41014b1f102e88a3&download= (circl)
- https://search.abb.com/library/Download.aspx?DocumentID=3ADR010315&LanguageCode=en&DocumentPartId=&Action=Launch (circl)
- https://new.abb.com/plc/automationbuilder/platform/software (circl)
- https://psirt.abb.com/csaf/2025/3adr011377.json (circl)
Timeline
- Jan 7, 2025 CVE Published
References
- https://search.abb.com/library/Download.aspx?DocumentID=3ADR011377&LanguageCode=en&DocumentPartId=&Action=Launch advisory
- https://customers.codesys.com/index.php?eID=dumpFile&t=f&f=18027&token=43109051cf95d3445bc616e4efb8414336ebcc47&download= url
- https://customers.codesys.com/index.php?eID=dumpFile&t=f&f=18355&token=e3e5a937ce72602bec39718ddc2f4ba6d983ccd1&download= url
- https://customers.codesys.com/index.php?eID=dumpFile&t=f&f=18604&token=d5e1e2820ee63077b875b3bb41014b1f102e88a3&download= url
- https://search.abb.com/library/Download.aspx?DocumentID=3ADR010315&LanguageCode=en&DocumentPartId=&Action=Launch url
- https://new.abb.com/plc/automationbuilder/platform/software url
- https://psirt.abb.com/csaf/2025/3adr011377.json advisory