First published: Mon Dec 13 2021(Updated: )
A Missing Authentication vulnerability in RobotWare for the OmniCore robot controller allows an attacker to read and modify files on the robot controller if the attacker has access to the Connected Services Gateway Ethernet port.
Credit: cybersecurity@ch.abb.com
Affected Software | Affected Version | How to fix |
---|---|---|
Abb Omnicore C30 Firmware | <7.3.2 | |
Abb Omnicore C30 |
The problem is corrected in RobotWare version 7.3.2. ABB recommends that customers apply the update at earliest convenience. The update is available for download from RobotStudio.
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this vulnerability is CVE-2021-22279.
The severity of CVE-2021-22279 is critical with a severity value of 9.8.
The affected software for CVE-2021-22279 is the ABB Omnicore C30 Firmware up to version 7.3.2.
CVE-2021-22279 allows an attacker to read and modify files on the robot controller if they have access to the Connected Services Gateway Ethernet port.
No, ABB Omnicore C30 is not vulnerable to CVE-2021-22279.