CVE-2023-31102 — Vulnetix

Try Vulnetix Request Demo

CVE-2023-31102 PUBLISHED CVSS 7.800000190734863 HIGH

Ppmd7.c in 7-Zip before 23.00 allows an integer underflow and invalid read operation via a crafted 7Z archive.

EPSS 38.38% · 97.2th percentile

Risk Scores

CVSS v3.1

7.800000190734863

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:F/RL:O/RC:C

EPSS Score

38.38%

97.2th percentile

Affected Products

Vendor	Product	Versions
ABB	ABB 800xA for Symphony Plus Harmony <=6.2
ABB	ABB 800xA History <=7.0
ABB	ABB Application Change Management <=6.2
ABB	ABB 800xA for AC 870P Melody <=6.2
ABB	ABB Production Response Batch History <=6.2
ABB	ABB Batch Management <=6.2

Timeline

Aug 27, 2023 CVE Published
Nov 3, 2023 EPSS Score
Nov 3, 2023 PoC Published
Nov 3, 2023 PoC Published
Nov 3, 2023 PoC Published
Nov 4, 2023 PoC Published
Mar 17, 2025 EPSS Score
Mar 22, 2025 EPSS Score
Mar 25, 2025 EPSS Score
Mar 30, 2025 EPSS Score
Apr 7, 2025 EPSS Score
Apr 8, 2025 EPSS Score

References

https://psirt.abb.com/csaf/2026/7paa023732.json advisory
https://search.abb.com/library/Download.aspx?DocumentID=7PAA023732&LanguageCode=en&DocumentPartId=&Action=Launch advisory
https://library.abb.com/d/3BDS011222D7000 advisory
https://library.abb.com/d/3BSE034463D7000 advisory
https://library.abb.com/d/3BSE037410D7000 advisory
https://library.abb.com/d/3BSE080520D7000 advisory
https://nvd.nist.gov/vuln/detail/CVE-2023-31102 advisory

Open in Interactive Console →