VDB
CVE-2023-47611
CVE-2023-47611
PUBLISHED
CVSS 6.800000190734863 MEDIUM
Improper Privilege Management vulnerability that could allow a local that could allow a local, low privileged attacker to elevate privileges to "manufacturer" level on the targeted system by sending a specially crafted SMS message.
EPSS 0.03% · 8.0th percentile
Risk Scores
CVSS v3.1
6.800000190734863
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:W/RC:R
EPSS Score
0.03%
8.0th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| ABB | Arctic Wireless Gateway ARR600 with Telit PLS62-W wireless modem module. | |
| ABB | Arctic Wireless Gateway ARG600 with Telit PLS62-W wireless modem module. | |
| ABB | Arctic Wireless Gateway ARC600 with Telit PLS62-W wireless modem module. |
Timeline
- Nov 10, 2023 CVE Published
- Nov 11, 2023 EPSS Score
- Dec 11, 2023 EPSS Score
- Jan 11, 2024 EPSS Score
- Feb 10, 2024 EPSS Score
- Mar 11, 2024 EPSS Score
- Apr 11, 2024 EPSS Score
- May 11, 2024 EPSS Score
- May 13, 2024 PoC Published
- May 14, 2024 PoC Published
- Jun 10, 2024 EPSS Score
- Jun 13, 2024 PoC Published
References
- https://psirt.abb.com/csaf/2025/2nga002427.json advisory
- https://new.abb.com/service/electrification/life-cycle-management?pe_data=D42415F457244415145784545584371%7C29609824 advisory
- https://search.abb.com/library/Download.aspx?DocumentID=1MRS758860&LanguageCode=en&DocumentPartId=&Action=Launch advisory
- https://search.abb.com/library/Download.aspx?DocumentID=2NGA002427&LanguageCode=en&DocumentPartId=PDF&Action=Launch advisory
- https://nvd.nist.gov/vuln/detail/CVE-2023-47611 advisory