CVE-2024-51548: Dangerous File Upload
First published: Thu Dec 05 2024(Updated: )
Dangerous File Upload vulnerabilities allow upload of malicious scripts. Affected products: ABB ASPECT - Enterprise v3.08.02; NEXUS Series v3.08.02; MATRIX Series v3.08.02
Credit: cybersecurity@ch.abb.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| ABB ASPECT | ||
| ABB NEXUS Series | ||
| ABB MATRIX Series | ||
| All of | ||
| ABB ASPECT | <3.08.03 | |
| ABB ASPECT | ||
| All of | ||
| ABB ASPECT | ||
| ABB ASPECT | <3.08.03 | |
| All of | ||
| ABB ASPECT | ||
| ABB ASPECT | <3.08.03 | |
| All of | ||
| ABB ASPECT | ||
| ABB ASPECT | <3.08.03 | |
| All of | ||
| Abb Nexus-2128 Firmware | ||
| ABB Nexus-2128-F | <3.08.03 | |
| All of | ||
| Abb Nexus-2128-a | ||
| Abb Nexus-2128-a Firmware | <3.08.03 | |
| All of | ||
| Abb Nexus-2128-f Firmware | ||
| ABB Nexus-2128-F | <3.08.03 | |
| All of | ||
| Abb Nexus-2128-g Firmware | ||
| Abb Nexus-2128-g | <3.08.03 | |
| All of | ||
| Abb Nexus-264 Firmware | ||
| ABB Nexus-264-F | <3.08.03 | |
| All of | ||
| Abb Nexus-264-a Firmware | ||
| Abb Nexus-264 Firmware | <3.08.03 | |
| All of | ||
| Abb Nexus-264-f Firmware | ||
| Abb Nexus-264 Firmware | <3.08.03 | |
| All of | ||
| Abb Nexus-264-g Firmware | ||
| Abb Nexus-264 Firmware | <3.08.03 | |
| All of | ||
| Abb Nexus-3-2128 Firmware | ||
| Abb Nexus-3-2128 | <3.08.03 | |
| All of | ||
| Abb Nexus-3-264 | <3.08.03 | |
| Abb Nexus-3-264 Firmware | ||
| All of | ||
| Abb Matrix-11 | <3.08.03 | |
| Abb Matrix-11 Firmware | ||
| All of | ||
| Abb Matrix-216 | <3.08.03 | |
| Abb Matrix-216 Firmware | ||
| All of | ||
| Abb Matrix-232 | <3.08.03 | |
| Abb Matrix-232 | ||
| All of | ||
| ABB Matrix-264 | <3.08.03 | |
| Abb Matrix-264 Firmware | ||
| All of | ||
| ABB Matrix-296 | <3.08.03 | |
| ABB MATRIX-296 Firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2024-51548?
CVE-2024-51548 has a critical severity rating due to its potential for remote code execution through dangerous file uploads.
How do I fix CVE-2024-51548?
To fix CVE-2024-51548, update your ABB ASPECT - Enterprise, NEXUS Series, or MATRIX Series to the latest patched version provided by ABB.
What products are affected by CVE-2024-51548?
CVE-2024-51548 affects ABB ASPECT - Enterprise v3.08.02, NEXUS Series v3.08.02, and MATRIX Series v3.08.02.
What type of vulnerability is CVE-2024-51548?
CVE-2024-51548 is classified as a Dangerous File Upload vulnerability.
Can I exploit CVE-2024-51548 remotely?
Yes, CVE-2024-51548 can potentially be exploited remotely, allowing attackers to upload malicious scripts.
- agent/title
- agent/weakness
- agent/references
- agent/first-publish-date
- agent/type
- agent/description
- agent/author
- collector/mitre-cve
- source/MITRE
- agent/source
- agent/guess-ai
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- agent/tags
- agent/severity
- agent/last-modified-date
- agent/softwarecombine
- agent/event
- collector/nvd-api
- source/NVD
- vendor/abb
- canonical/abb aspect
- canonical/abb nexus series
- canonical/abb matrix series
- canonical/abb nexus-2128 firmware
- canonical/abb nexus-2128-f
- canonical/abb nexus-2128-a
- canonical/abb nexus-2128-a firmware
- canonical/abb nexus-2128-f firmware
- canonical/abb nexus-2128-g firmware
- canonical/abb nexus-2128-g
- canonical/abb nexus-264 firmware
- canonical/abb nexus-264-f
- canonical/abb nexus-264-a firmware
- canonical/abb nexus-264-f firmware
- canonical/abb nexus-264-g firmware
- canonical/abb nexus-3-2128 firmware
- canonical/abb nexus-3-2128
- canonical/abb nexus-3-264
- canonical/abb nexus-3-264 firmware
- canonical/abb matrix-11
- canonical/abb matrix-11 firmware
- canonical/abb matrix-216
- canonical/abb matrix-216 firmware
- canonical/abb matrix-232
- canonical/abb matrix-264
- canonical/abb matrix-264 firmware
- canonical/abb matrix-296
- canonical/abb matrix-296 firmware