CVE-2023-0863: Authentication to access the AC wallbox via its Bluetooth Low Energy (BLE) channel can be bypassed,
First published: Wed May 17 2023(Updated: )
Improper Authentication vulnerability in ABB Terra AC wallbox (UL40/80A), ABB Terra AC wallbox (UL32A), ABB Terra AC wallbox (CE) (Terra AC MID), ABB Terra AC wallbox (CE) Terra AC Juno CE, ABB Terra AC wallbox (CE) Terra AC PTB, ABB Terra AC wallbox (CE) Symbiosis, ABB Terra AC wallbox (JP).This issue affects Terra AC wallbox (UL40/80A): from 1.0;0 through 1.5.5; Terra AC wallbox (UL32A) : from 1.0;0 through 1.6.5; Terra AC wallbox (CE) (Terra AC MID): from 1.0;0 through 1.6.5; Terra AC wallbox (CE) Terra AC Juno CE: from 1.0;0 through 1.6.5; Terra AC wallbox (CE) Terra AC PTB : from 1.0;0 through 1.5.25; Terra AC wallbox (CE) Symbiosis: from 1.0;0 through 1.2.7; Terra AC wallbox (JP): from 1.0;0 through 1.6.5.
Credit: cybersecurity@ch.abb.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Abb Terra Ac Wallbox Ul40 Firmware | >=1.0.0<1.5.6 | |
| Abb Terra Ac Wallbox Ul40 | ||
| Abb Terra Ac Wallbox 80a Firmware | >=1.0.0<1.5.6 | |
| Abb Terra Ac Wallbox 80a | ||
| Abb Terra Ac Wallbox Ul32a Firmware | >=1.0.0<1.6.6 | |
| Abb Terra Ac Wallbox Ul32a | ||
| Abb Terra Ac Wallbox Jp Firmware | >=1.0.0<1.6.6 | |
| Abb Terra Ac Wallbox Jp | ||
| Abb Terra Ac Wallbox Ce Mid Firmware | >=1.0.0<1.6.6 | |
| Abb Terra Ac Wallbox Ce Mid | ||
| Abb Terra Ac Wallbox Ce Juno Firmware | >=1.0.0<1.6.6 | |
| Abb Terra Ac Wallbox Ce Juno | ||
| Abb Terra Ac Wallbox Ce Ptb Firmware | >=1.0.0<1.5.26 | |
| Abb Terra Ac Wallbox Ce Ptb | ||
| Abb Terra Ac Wallbox Ce Symbiosis Firmware | >=1.0.0<1.2.8 | |
| Abb Terra Ac Wallbox Ce Symbiosis |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID?
The vulnerability ID is CVE-2023-0863.
What is the severity of CVE-2023-0863?
The severity of CVE-2023-0863 is high with a value of 8.8.
What is the affected software version of ABB Terra AC wallbox UL40?
The affected software version of ABB Terra AC wallbox UL40 is between 1.0.0 and 1.5.6.
What is the affected software version of ABB Terra AC wallbox UL80A?
The affected software version of ABB Terra AC wallbox UL80A is between 1.0.0 and 1.5.6.
How can I fix CVE-2023-0863?
To fix CVE-2023-0863, update the firmware of the affected ABB Terra AC wallbox models to a version higher than the vulnerable version.
- collector/nvd-index
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/severity
- agent/title
- agent/weakness
- agent/references
- agent/last-modified-date
- agent/tags
- agent/description
- agent/first-publish-date
- agent/event
- vendor/abb
- canonical/abb terra ac wallbox ul40 firmware
- version/abb terra ac wallbox ul40 firmware/1.0.0
- canonical/abb terra ac wallbox ul40
- canonical/abb terra ac wallbox 80a firmware
- version/abb terra ac wallbox 80a firmware/1.0.0
- canonical/abb terra ac wallbox 80a
- canonical/abb terra ac wallbox ul32a firmware
- version/abb terra ac wallbox ul32a firmware/1.0.0
- canonical/abb terra ac wallbox ul32a
- canonical/abb terra ac wallbox jp firmware
- version/abb terra ac wallbox jp firmware/1.0.0
- canonical/abb terra ac wallbox jp
- canonical/abb terra ac wallbox ce mid firmware
- version/abb terra ac wallbox ce mid firmware/1.0.0
- canonical/abb terra ac wallbox ce mid
- canonical/abb terra ac wallbox ce juno firmware
- version/abb terra ac wallbox ce juno firmware/1.0.0
- canonical/abb terra ac wallbox ce juno
- canonical/abb terra ac wallbox ce ptb firmware
- version/abb terra ac wallbox ce ptb firmware/1.0.0
- canonical/abb terra ac wallbox ce ptb
- canonical/abb terra ac wallbox ce symbiosis firmware
- version/abb terra ac wallbox ce symbiosis firmware/1.0.0
- canonical/abb terra ac wallbox ce symbiosis