CVE-2023-40481 — Vulnetix

Try Vulnetix Request Demo

CVE-2023-40481 PUBLISHED CVSS 7.800000190734863 HIGH

This vulnerability allows remote attackers to execute arbitrary code on affected installations of 7-Zip. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.

EPSS 4.31% · 88.8th percentile

Risk Scores

CVSS v3.0

7.800000190734863

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:F/RL:O/RC:C

EPSS Score

4.31%

88.8th percentile

Affected Products

Vendor	Product	Versions
ABB	ABB 800xA History <=7.0
ABB	ABB 800xA for Symphony Plus Harmony <=6.2
ABB	ABB Production Response Batch History <=6.2
ABB	ABB Application Change Management <=6.2
ABB	ABB 800xA for AC 870P Melody <=6.2
ABB	ABB Batch Management <=6.2

Timeline

Aug 27, 2023 CVE Published
May 3, 2024 EPSS Score
May 27, 2024 EPSS Score
Jul 13, 2024 EPSS Score
Aug 6, 2024 EPSS Score
Aug 30, 2024 EPSS Score
Oct 17, 2024 EPSS Score
Nov 9, 2024 EPSS Score
Dec 4, 2024 EPSS Score
Dec 28, 2024 EPSS Score
Feb 14, 2025 EPSS Score
Mar 9, 2025 EPSS Score

References

https://psirt.abb.com/csaf/2026/7paa023732.json advisory
https://search.abb.com/library/Download.aspx?DocumentID=7PAA023732&LanguageCode=en&DocumentPartId=&Action=Launch advisory
https://library.abb.com/d/3BDS011222D7000 advisory
https://library.abb.com/d/3BSE034463D7000 advisory
https://library.abb.com/d/3BSE037410D7000 advisory
https://library.abb.com/d/3BSE080520D7000 advisory
https://nvd.nist.gov/vuln/detail/CVE-2023-40481 advisory

Open in Interactive Console →