VDB

CVE-2024-48845

CVE-2024-48845 PUBLISHED CVSS 9.300000190734863 CRITICAL

Weak Password Reset Rules vulnerabilities where found providing a potiential for the storage of weak passwords that could facilitate unauthorized admin/application access.  Affected products: ABB ASPECT - Enterprise v3.07.02; NEXUS Series v3.07.02; MATRIX Series v3.07.02

EPSS 8.11% · 92.3th percentile

Risk Scores

CVSS 4.0
9.300000190734863
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:L/SC:L/SI:L/SA:L
EPSS Score
8.11%
92.3th percentile

Affected Products

VendorProductVersions
abbaspect-ent-256_firmware0
abbnexus-2128_firmware0
abbnexus_series0
abbmatrix_series0
abbmatrix-264_firmware0
ABBNEXUS Series0
abbnexus-264-a_firmware0
abbnexus-264_firmware0
abbnexus-264-f_firmware0
abbmatrix-216_firmware0
ABBASPECT-Enterprise0
abbnexus-3-264_firmware0
abbnexus-2128-g_firmware0
abbnexus-3-2128_firmware0
abbaspect-ent-12_firmware0
abbmatrix-232_firmware0
abbaspect-ent-2_firmware0
abbmatrix-11_firmware0
abbaspect-ent-96_firmware0
abbnexus-2128-f_firmware0

…and 5 more

Timeline

  • Dec 5, 2024 CVE Published
  • Dec 5, 2024 PoC Published
  • Dec 5, 2024 CVE Updated
  • Dec 7, 2024 EPSS Score
  • Dec 24, 2024 EPSS Score
  • Jan 1, 2025 PoC Published
  • Jan 7, 2025 PoC Published
  • Jan 10, 2025 EPSS Score
  • Feb 12, 2025 EPSS Score
  • Mar 1, 2025 EPSS Score
  • Mar 18, 2025 EPSS Score
  • Mar 21, 2025 Coalition ESS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›