CVE-2022-3388

Description

An input validation vulnerability exists in the Monitor Pro interface of MicroSCADA Pro and MicroSCADA X SYS600. An authenticated user can launch an administrator level remote code execution irrespective of the authenticated user's role.

Related CPE's

aabbmicroscada_pro_sys6009.4fixpack_1******

aabbmicroscada_pro_sys6009.4fixpack_2******

aabbmicroscada_pro_sys6009.4-******

oabbmicroscada_pro_sys600********

aabbmicroscada_pro_sys600********

habbmicroscada_pro_sys600-*******

References

https://search.abb.com/library/Download.aspx?DocumentID=8DBD000123&LanguageCode=en&DocumentPartId=&Action=Launch&elqaid=4293&elqat=1

Vendor Advisory

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics
Created by Yello
About Severity.io