VDB

CVE-2024-51545

CVE-2024-51545 PUBLISHED CVSS 9.300000190734863 CRITICAL

Username Enumeration vulnerabilities allow access to application level username add, delete, modify and list functions.  Affected products: ABB ASPECT - Enterprise v3.08.02; NEXUS Series v3.08.02; MATRIX Series v3.08.02

EPSS 0.42% · 62.5th percentile

Risk Scores

CVSS 4.0
9.300000190734863
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:L
EPSS Score
0.42%
62.5th percentile

Affected Products

VendorProductVersions
abbmatrix_series0
abbmatrix-232_firmware0
abbaspect_enterprise0
abbnexus-264-g_firmware0
abbmatrix-296_firmware0
abbnexus-2128-a_firmware0
ABBMATRIX Series0
abbnexus-3-264_firmware0
abbnexus-2128-f_firmware0
abbnexus-264-a_firmware0
abbmatrix-264_firmware0
abbaspect-ent-256_firmware0
abbnexus-264-f_firmware0
abbmatrix-11_firmware0
abbmatrix-216_firmware0
abbaspect-ent-12_firmware0
abbnexus-2128-g_firmware0
abbnexus-2128_firmware0
abbnexus-3-2128_firmware0
abbaspect-ent-96_firmware0

…and 5 more

Timeline

  • Dec 5, 2024 CVE Published
  • Dec 5, 2024 PoC Published
  • Dec 5, 2024 PoC Published
  • Dec 7, 2024 EPSS Score
  • Dec 24, 2024 EPSS Score
  • Jan 7, 2025 PoC Published
  • Jan 10, 2025 EPSS Score
  • Jan 27, 2025 EPSS Score
  • Feb 4, 2025 Coalition ESS Score
  • Feb 12, 2025 EPSS Score
  • Feb 27, 2025 CVE Updated
  • Feb 28, 2025 Coalition ESS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›