CVE-2020-11640

CVSS V2 None CVSS V3 None

Description

AdvaBuild uses a command queue to launch certain operations. An attacker who gains access to the command queue can use it to launch an attack by running any executable on the AdvaBuild node. The executables that can be run are not limited to AdvaBuild specific executables. Improper Privilege Management vulnerability in ABB Advant MOD 300 AdvaBuild.This issue affects Advant MOD 300 AdvaBuild: from 3.0 through 3.7 SP2.

Overview

CVE ID
CVE-2020-11640

Assigner
ABB

Vulnerability Status
PUBLISHED

Published Version
2024-07-23T17:36:51.458Z

Last Modified Date
2024-07-23T17:36:51.458Z

Weakness Enumerations

CWE	URL
CWE-269	http://cwe.mitre.org/data/definitions/269.html

References

Reference URL	Reference Tags
https://search.abb.com/library/Download.aspx?DocumentID=3BUA003421&LanguageCode=en&DocumentPartId=&Action=Launch&_ga=2.200044199.882581162.1721753430-284724496.1718609177

Sources

Source Name	Source URL
NIST	https://nvd.nist.gov/vuln/detail/CVE-2020-11640
MITRE	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11640

History

Created	Old Value	New Value	Data Type	Notes
2024-07-24 12:01:11				Added to TrackCVE