CVE-2020-8473: ABB System 800xA Weak File Permissions - ABB System 800xA Base
First published: Tue Apr 28 2020(Updated: )
Insufficient folder permissions used by system functions in ABB System 800xA Base (version 6.1 and earlier) allow low privileged users to read, modify, add and delete system and application files. An authenticated attacker who successfully exploit the vulnerabilities could escalate his/her privileges, cause system functions to stop and to corrupt user applications.
Credit: cybersecurity@ch.abb.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| ABB 800xA | <=6.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2020-8473?
CVE-2020-8473 is considered to have a high severity due to insufficient folder permissions that allow unauthorized access to system files.
How do I fix CVE-2020-8473?
To fix CVE-2020-8473, update ABB System 800xA Base to version 6.2 or later where the permissions issue is resolved.
Who is affected by CVE-2020-8473?
CVE-2020-8473 affects users of ABB System 800xA Base version 6.1 and earlier.
What type of access do low privileged users gain with CVE-2020-8473?
Low privileged users can read, modify, add, and delete system and application files due to the insufficient permissions.
What could happen if an attacker exploits CVE-2020-8473?
An authenticated attacker could escalate privileges and compromise the security and integrity of the ABB System 800xA Base.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/last-modified-date
- agent/references
- agent/weakness
- agent/author
- agent/title
- agent/first-publish-date
- agent/description
- agent/event
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/abb
- canonical/abb 800xa
- version/abb 800xa/6.1