CVE-2020-8489: ABB System 800xA Inter process communication vulnerability - 800xA Information Management
First published: Wed Apr 29 2020(Updated: )
Insufficient protection of the inter-process communication functions in ABB System 800xA Information Management (all published versions) enables an attacker authenticated on the local system to inject data, affecting the runtime values to be stored in the archive, or making Information Management history services unavailable.
Credit: cybersecurity@ch.abb.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| ABB 800xA |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2020-8489?
CVE-2020-8489 is classified as a high severity vulnerability due to its potential impact on data integrity in ABB System 800xA.
How do I fix CVE-2020-8489?
To fix CVE-2020-8489, apply the latest security patches provided by ABB for the 800xA Information Management system.
Who is affected by CVE-2020-8489?
All published versions of ABB System 800xA Information Management are affected by CVE-2020-8489.
What types of attacks can CVE-2020-8489 facilitate?
CVE-2020-8489 can allow an authenticated local attacker to inject malicious data into the inter-process communication functions.
How does CVE-2020-8489 impact data management?
CVE-2020-8489 affects the integrity of runtime values stored in archives, potentially compromising historical data accuracy.
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/last-modified-date
- agent/references
- agent/weakness
- agent/author
- agent/title
- agent/first-publish-date
- agent/description
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/abb
- canonical/abb 800xa