VDB
GCVE-110-NCSC-2024-465
GCVE-110-NCSC-2024-465
Advisory PublishedCVSS 10.0/10
ABB heeft kwetsbaarheden verholpen in ABB ASPECT, NEXUS Series en MATRIX Series (Specifiek voor versies tot 3.08.02).
Weaknesses (CWE)
CWE-552Files or Directories Accessible to External PartiesCWE-20Improper Input ValidationCWE-319Cleartext Transmission of Sensitive InformationCWE-79Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')CWE-918Server-Side Request Forgery (SSRF)CWE-770Allocation of Resources Without Limits or ThrottlingCWE-384Session FixationCWE-94Improper Control of Generation of Code ('Code Injection')CWE-521Weak Password RequirementsCWE-352Cross-Site Request Forgery (CSRF)CWE-328Use of Weak HashCWE-98Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')CWE-15External Control of System or Configuration SettingCWE-522Insufficiently Protected CredentialsCWE-1287Improper Validation of Specified Type of InputCWE-434Unrestricted Upload of File with Dangerous TypeCWE-36Absolute Path TraversalCWE-193Off-by-one ErrorCWE-1393Use of Default Password
Risk Scores
CVSS 3.1
10.0/10
Critical · CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| abb | matrix_series | — | — |
| abb | aspect_enterprise | — | — |
| abb | nexus_series | — | — |
| abb | aspect-ent-256_firmware | — | — |
| abb | aspect-ent-12_firmware | — | — |
Aliases
CVE-2024-11316CVE-2024-11317CVE-2024-48839CVE-2024-48840CVE-2024-48843CVE-2024-48844CVE-2024-48845CVE-2024-48846CVE-2024-48847CVE-2024-51541CVE-2024-51542CVE-2024-51543CVE-2024-51544CVE-2024-51545CVE-2024-51546CVE-2024-51548CVE-2024-51549CVE-2024-51550CVE-2024-51551CVE-2024-51554CVE-2024-51555CVE-2024-6209CVE-2024-6298CVE-2024-6515CVE-2024-6516CVE-2024-6784
Browse GCVE Records
72,096 records in the GCVE database · Updated July 14, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.