CVE-2024-4007 - OpenCVE

Default credential in install package in ABB ASPECT; NEXUS Series; MATRIX Series version 3.07 allows attacker to login to product instances wrongly configured.

Attack Vector Adjacent Network

Attack Complexity Low

Privileges Required None

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact High

Vulnerable System Integrity Impact High

Vulnerable System Availability Impact High

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

Attack Vector Adjacent Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

No data.

No data.

No data.

References

Link	Providers
https://search.abb.com/library/Download.aspx?DocumentID=9AKK108469A6101&LanguageCode=en&DocumentPartId=&Action=Launch

History

No history.

MITRE

Status: PUBLISHED

Assigner: ABB

Published: 2024-07-01T12:06:53.048Z

Updated: 2024-08-01T20:26:57.247Z

Reserved: 2024-04-19T17:08:37.839Z

Link: CVE-2024-4007

Vulnrichment

Updated: 2024-08-01T20:26:57.247Z

NVD

Status : Awaiting Analysis

Published: 2024-07-01T13:15:06.077

Modified: 2024-07-01T16:37:39.040

Link: CVE-2024-4007

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-4007", "assignerOrgId": "2b718523-d88f-4f37-9bbd-300c20644bf9", "state": "PUBLISHED", "assignerShortName": "ABB", "dateReserved": "2024-04-19T17:08:37.839Z", "datePublished": "2024-07-01T12:06:53.048Z", "dateUpdated": "2024-08-01T20:26:57.247Z"}, "containers": {"cna": {"affected": [{"collectionURL": "https://new.abb.com/low-voltage/de/produkte/gebaeudeautomation/produktsortiment/cylon/produkte/aspect-enterprise", "defaultStatus": "unaffected", "packageName": "Installer", "platforms": ["Linux"], "product": "ASPECT Enterprise (ASP-ENT-x)", "vendor": "ABB", "versions": [{"status": "affected", "version": "3.07"}]}, {"collectionURL": "https://new.abb.com/low-voltage/de/produkte/gebaeudeautomation/produktsortiment/cylon/produkte/nexus-series", "defaultStatus": "unaffected", "packageName": "Installer", "platforms": ["Linux"], "product": "NEXUS Series (NEX-2x, NEXUS-3-x)", "vendor": "ABB", "versions": [{"status": "affected", "version": "3.07"}]}, {"collectionURL": "https://new.abb.com/low-voltage/de/produkte/gebaeudeautomation/produktsortiment/cylon/produkte/matrix", "defaultStatus": "unaffected", "packageName": "Installer", "platforms": ["Linux"], "product": "MATRIX Series(MAT-x)", "vendor": "ABB", "versions": [{"status": "affected", "version": "3.07"}]}], "credits": [{"lang": "en", "type": "finder", "value": "ABB likes to thank https://divd.nl for reporting the vulnerability in responsible disclosure."}], "datePublic": "2024-07-01T03:30:00.000Z", "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "Default credential in install package in ABB ASPECT; NEXUS Series; MATRIX Series version 3.07 allows attacker to login to product instances wrongly configured.<br>"}], "value": "Default credential in install package in ABB ASPECT; NEXUS Series; MATRIX Series version 3.07 allows attacker to login to product instances wrongly configured."}], "impacts": [{"capecId": "CAPEC-49", "descriptions": [{"lang": "en", "value": "CAPEC-49 Password Brute Forcing"}]}], "metrics": [{"cvssV4_0": {"Automatable": "NO", "Recovery": "USER", "Safety": "NEGLIGIBLE", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "ADJACENT", "baseScore": 8.7, "baseSeverity": "HIGH", "privilegesRequired": "NONE", "providerUrgency": "RED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "userInteraction": "NONE", "valueDensity": "DIFFUSE", "vectorString": "CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/S:N/AU:N/R:U/V:D/RE:L/U:Red", "version": "4.0", "vulnAvailabilityImpact": "HIGH", "vulnConfidentialityImpact": "HIGH", "vulnIntegrityImpact": "HIGH", "vulnerabilityResponseEffort": "LOW"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}, {"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "ADJACENT_NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-1392", "description": "CWE-1392: Use of Default Credentials", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "2b718523-d88f-4f37-9bbd-300c20644bf9", "shortName": "ABB", "dateUpdated": "2024-07-02T00:10:15.764Z"}, "references": [{"url": "https://search.abb.com/library/Download.aspx?DocumentID=9AKK108469A6101&LanguageCode=en&DocumentPartId=&Action=Launch"}], "solutions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "\n\nABB Strongly recommends the following actions on any released SW version of ASPECT:\n- Change the PHPmyAdmin Password according to the system manual:  All customers who operate the ASPECT System with its default password are recommended to replace this default password with a unique, secure password, containing a\nmix of characters, numbers, and special characters with at least 10 characters in length.\n- Never expose open ports to the ASPECT product towards the Internet or any insecure network.\n- When remote access is required, use secure methods, such as Virtual Private Networks (VPNs).\nRecognize that VPNs may have vulnerabilities and should be updated to the most current version\navailable. Also, understand that VPNs are only as secure as the connected devices.\n- ABB recommends that customers shall apply the latest product update at the earliest convenience.\n\n\n<br>"}], "value": "ABB Strongly recommends the following actions on any released SW version of ASPECT:\n- Change the PHPmyAdmin Password according to the system manual:\u00a0 All customers who operate the ASPECT System with its default password are recommended to replace this default password with a unique, secure password, containing a\nmix of characters, numbers, and special characters with at least 10 characters in length.\n- Never expose open ports to the ASPECT product towards the Internet or any insecure network.\n- When remote access is required, use secure methods, such as Virtual Private Networks (VPNs).\nRecognize that VPNs may have vulnerabilities and should be updated to the most current version\navailable. Also, understand that VPNs are only as secure as the connected devices.\n- ABB recommends that customers shall apply the latest product update at the earliest convenience."}], "source": {"discovery": "UNKNOWN"}, "title": "Hard coded default credential contained in install package", "workarounds": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "\n\nASPECT system shall not be connected directly to untrusted networks such as the Internet.\nIf remote access to an ASPECT system is a customer requirement, the system shall operate behind a firewall. User accessing ASPECT remotely shall do this using a VPN Gateway allowing access to the particular\nnetwork segment where ASPECT is installed and configured in.\nNote: it is crucial that the VPN Gateway and Network is setup in accordance with best industry standards and maintained in terms of security patches for all related components.\nAny default credentials shall be exchanged with a unique credential supporting adequate strength. \n\n<br>"}], "value": "ASPECT system shall not be connected directly to untrusted networks such as the Internet.\nIf remote access to an ASPECT system is a customer requirement, the system shall operate behind a firewall. User accessing ASPECT remotely shall do this using a VPN Gateway allowing access to the particular\nnetwork segment where ASPECT is installed and configured in.\nNote: it is crucial that the VPN Gateway and Network is setup in accordance with best industry standards and maintained in terms of security patches for all related components.\nAny default credentials shall be exchanged with a unique credential supporting adequate strength."}], "x_generator": {"engine": "Vulnogram 0.2.0"}}, "adp": [{"affected": [{"vendor": "abb", "product": "aspect-ent-2_firmware", "cpes": ["cpe:2.3:o:abb:aspect-ent-2_firmware:3.0.0:*:*:*:*:*:*:*"], "defaultStatus": "unaffected", "versions": [{"version": "3.0.0", "status": "affected", "lessThan": "3.07.02", "versionType": "custom"}]}, {"vendor": "abb", "product": "aspect-ent-96_firmware", "cpes": ["cpe:2.3:o:abb:aspect-ent-96_firmware:3.0.0:*:*:*:*:*:*:*"], "defaultStatus": "unaffected", "versions": [{"version": "3.0.0", "status": "affected", "lessThan": "3.07.02", "versionType": "custom"}]}, {"vendor": "abb", "product": "nexus-2128-a_firmware", "cpes": ["cpe:2.3:o:abb:nexus-2128-a_firmware:3.0.0:*:*:*:*:*:*:*"], "defaultStatus": "unaffected", "versions": [{"version": "3.0.0", "status": "affected", "lessThan": "3.07.02", "versionType": "custom"}]}, {"vendor": "abb", "product": "nexus-2128-f_firmware", "cpes": ["cpe:2.3:o:abb:nexus-2128-f_firmware:3.0.0:*:*:*:*:*:*:*"], "defaultStatus": "unaffected", "versions": [{"version": "3.0.0", "status": "affected", "lessThan": "3.07.02", "versionType": "custom"}]}, {"vendor": "abb", "product": "nexus-2128_firmware", "cpes": ["cpe:2.3:o:abb:nexus-2128_firmware:3.0.0:*:*:*:*:*:*:*"], "defaultStatus": "unaffected", "versions": [{"version": "3.0.0", "status": "affected", "lessThan": "3.07.02", "versionType": "custom"}]}, {"vendor": "abb", "product": "nexus-2128-g_firmware", "cpes": ["cpe:2.3:o:abb:nexus-2128-g_firmware:3.0.0:*:*:*:*:*:*:*"], "defaultStatus": "unaffected", "versions": [{"version": "3.0.0", "status": "affected", "lessThan": "3.07.02", "versionType": "custom"}]}, {"vendor": "abb", "product": "nexus-264-a_firmware", "cpes": ["cpe:2.3:o:abb:nexus-264-a_firmware:3.0.0:*:*:*:*:*:*:*"], "defaultStatus": "unaffected", "versions": [{"version": "3.0.0", "status": "affected", "lessThan": "3.07.02", "versionType": "custom"}]}, {"vendor": "abb", "product": "nexus-264-f_firmware", "cpes": ["cpe:2.3:o:abb:nexus-264-f_firmware:3.0.0:*:*:*:*:*:*:*"], "defaultStatus": "unaffected", "versions": [{"version": "3.0.0", "status": "affected", "lessThan": "3.07.02", "versionType": "custom"}]}, {"vendor": "abb", "product": "nexus-264_firmware", "cpes": ["cpe:2.3:o:abb:nexus-264_firmware:3.0.0:*:*:*:*:*:*:*"], "defaultStatus": "unaffected", "versions": [{"version": "3.0.0", "status": "affected", "lessThan": "3.07.02", "versionType": "custom"}]}, {"vendor": "abb", "product": "nexus-264-g_firmware", "cpes": ["cpe:2.3:o:abb:nexus-264-g_firmware:3.0.0:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "3.0.0", "status": "affected", "lessThan": "3.07.02", "versionType": "custom"}]}, {"vendor": "abb", "product": "nexus-3-2128_firmware", "cpes": ["cpe:2.3:o:abb:nexus-3-2128_firmware:3.0.0:*:*:*:*:*:*:*"], "defaultStatus": "unaffected", "versions": [{"version": "3.0.0", "status": "affected", "lessThan": "3.07.02", "versionType": "custom"}]}, {"vendor": "abb", "product": "nexus-3-264_firmware", "cpes": ["cpe:2.3:o:abb:nexus-3-264_firmware:3.0.0:*:*:*:*:*:*:*"], "defaultStatus": "unaffected", "versions": [{"version": "3.0.0", "status": "affected", "lessThan": "3.07.02", "versionType": "custom"}]}, {"vendor": "abb", "product": "matrix-11_firmware", "cpes": ["cpe:2.3:o:abb:matrix-11_firmware:3.0.0:*:*:*:*:*:*:*"], "defaultStatus": "unaffected", "versions": [{"version": "3.0.0", "status": "affected", "lessThan": "3.07.02", "versionType": "custom"}]}, {"vendor": "abb", "product": "matrix-216_firmware", "cpes": ["cpe:2.3:o:abb:matrix-216_firmware:3.0.0:*:*:*:*:*:*:*"], "defaultStatus": "unaffected", "versions": [{"version": "3.0.0", "status": "affected", "lessThan": "3.07.02", "versionType": "custom"}]}, {"vendor": "abb", "product": "matrix-232_firmware", "cpes": ["cpe:2.3:o:abb:matrix-232_firmware:3.0.0:*:*:*:*:*:*:*"], "defaultStatus": "unaffected", "versions": [{"version": "3.0.0", "status": "affected", "lessThan": "3.07.02", "versionType": "custom"}]}, {"vendor": "abb", "product": "matrix-264_firmware", "cpes": ["cpe:2.3:o:abb:matrix-264_firmware:3.0.0:*:*:*:*:*:*:*"], "defaultStatus": "unaffected", "versions": [{"version": "3.0.0", "status": "affected", "lessThan": "3.07.02", "versionType": "custom"}]}, {"vendor": "abb", "product": "aspect-ent-12_firmware", "cpes": ["cpe:2.3:o:abb:aspect-ent-12_firmware:3.0.0:*:*:*:*:*:*:*"], "defaultStatus": "unaffected", "versions": [{"version": "3.0.0", "status": "affected", "lessThan": "3.07.02", "versionType": "custom"}]}, {"vendor": "abb", "product": "aspect-ent-256_firmware", "cpes": ["cpe:2.3:o:abb:aspect-ent-256_firmware:3.0.0:*:*:*:*:*:*:*"], "defaultStatus": "unaffected", "versions": [{"version": "3.0.0", "status": "affected", "lessThan": "3.07.02", "versionType": "custom"}]}, {"vendor": "abb", "product": "matrix-296_firmware", "cpes": ["cpe:2.3:o:abb:matrix-296_firmware:3.0.0:*:*:*:*:*:*:*"], "defaultStatus": "unaffected", "versions": [{"version": "3.0.0", "status": "affected", "lessThan": "3.07.02", "versionType": "custom"}]}], "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-07-02T19:33:48.062617Z", "id": "CVE-2024-4007", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-07-03T14:13:05.048Z"}}, {"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-01T20:26:57.247Z"}, "title": "CVE Program Container", "references": [{"url": "https://search.abb.com/library/Download.aspx?DocumentID=9AKK108469A6101&LanguageCode=en&DocumentPartId=&Action=Launch", "tags": ["x_transferred"]}]}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://search.abb.com/library/Download.aspx?DocumentID=9AKK108469A6101&LanguageCode=en&DocumentPartId=&Action=Launch", "tags": ["x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-01T20:26:57.247Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-4007", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2024-07-02T19:33:48.062617Z"}}}], "affected": [{"cpes": ["cpe:2.3:o:abb:aspect-ent-2_firmware:3.0.0:*:*:*:*:*:*:*"], "vendor": "abb", "product": "aspect-ent-2_firmware", "versions": [{"status": "affected", "version": "3.0.0", "lessThan": "3.07.02", "versionType": "custom"}], "defaultStatus": "unaffected"}, {"cpes": ["cpe:2.3:o:abb:aspect-ent-96_firmware:3.0.0:*:*:*:*:*:*:*"], "vendor": "abb", "product": "aspect-ent-96_firmware", "versions": [{"status": "affected", "version": "3.0.0", "lessThan": "3.07.02", "versionType": "custom"}], "defaultStatus": "unaffected"}, {"cpes": ["cpe:2.3:o:abb:nexus-2128-a_firmware:3.0.0:*:*:*:*:*:*:*"], "vendor": "abb", "product": "nexus-2128-a_firmware", "versions": [{"status": "affected", "version": "3.0.0", "lessThan": "3.07.02", "versionType": "custom"}], "defaultStatus": "unaffected"}, {"cpes": ["cpe:2.3:o:abb:nexus-2128-f_firmware:3.0.0:*:*:*:*:*:*:*"], "vendor": "abb", "product": "nexus-2128-f_firmware", "versions": [{"status": "affected", "version": "3.0.0", "lessThan": "3.07.02", "versionType": "custom"}], "defaultStatus": "unaffected"}, {"cpes": ["cpe:2.3:o:abb:nexus-2128_firmware:3.0.0:*:*:*:*:*:*:*"], "vendor": "abb", "product": "nexus-2128_firmware", "versions": [{"status": "affected", "version": "3.0.0", "lessThan": "3.07.02", "versionType": "custom"}], "defaultStatus": "unaffected"}, {"cpes": ["cpe:2.3:o:abb:nexus-2128-g_firmware:3.0.0:*:*:*:*:*:*:*"], "vendor": "abb", "product": "nexus-2128-g_firmware", "versions": [{"status": "affected", "version": "3.0.0", "lessThan": "3.07.02", "versionType": "custom"}], "defaultStatus": "unaffected"}, {"cpes": ["cpe:2.3:o:abb:nexus-264-a_firmware:3.0.0:*:*:*:*:*:*:*"], "vendor": "abb", "product": "nexus-264-a_firmware", "versions": [{"status": "affected", "version": "3.0.0", "lessThan": "3.07.02", "versionType": "custom"}], "defaultStatus": "unaffected"}, {"cpes": ["cpe:2.3:o:abb:nexus-264-f_firmware:3.0.0:*:*:*:*:*:*:*"], "vendor": "abb", "product": "nexus-264-f_firmware", "versions": [{"status": "affected", "version": "3.0.0", "lessThan": "3.07.02", "versionType": "custom"}], "defaultStatus": "unaffected"}, {"cpes": ["cpe:2.3:o:abb:nexus-264_firmware:3.0.0:*:*:*:*:*:*:*"], "vendor": "abb", "product": "nexus-264_firmware", "versions": [{"status": "affected", "version": "3.0.0", "lessThan": "3.07.02", "versionType": "custom"}], "defaultStatus": "unaffected"}, {"cpes": ["cpe:2.3:o:abb:nexus-264-g_firmware:3.0.0:*:*:*:*:*:*:*"], "vendor": "abb", "product": "nexus-264-g_firmware", "versions": [{"status": "affected", "version": "3.0.0", "lessThan": "3.07.02", "versionType": "custom"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:o:abb:nexus-3-2128_firmware:3.0.0:*:*:*:*:*:*:*"], "vendor": "abb", "product": "nexus-3-2128_firmware", "versions": [{"status": "affected", "version": "3.0.0", "lessThan": "3.07.02", "versionType": "custom"}], "defaultStatus": "unaffected"}, {"cpes": ["cpe:2.3:o:abb:nexus-3-264_firmware:3.0.0:*:*:*:*:*:*:*"], "vendor": "abb", "product": "nexus-3-264_firmware", "versions": [{"status": "affected", "version": "3.0.0", "lessThan": "3.07.02", "versionType": "custom"}], "defaultStatus": "unaffected"}, {"cpes": ["cpe:2.3:o:abb:matrix-11_firmware:3.0.0:*:*:*:*:*:*:*"], "vendor": "abb", "product": "matrix-11_firmware", "versions": [{"status": "affected", "version": "3.0.0", "lessThan": "3.07.02", "versionType": "custom"}], "defaultStatus": "unaffected"}, {"cpes": ["cpe:2.3:o:abb:matrix-216_firmware:3.0.0:*:*:*:*:*:*:*"], "vendor": "abb", "product": "matrix-216_firmware", "versions": [{"status": "affected", "version": "3.0.0", "lessThan": "3.07.02", "versionType": "custom"}], "defaultStatus": "unaffected"}, {"cpes": ["cpe:2.3:o:abb:matrix-232_firmware:3.0.0:*:*:*:*:*:*:*"], "vendor": "abb", "product": "matrix-232_firmware", "versions": [{"status": "affected", "version": "3.0.0", "lessThan": "3.07.02", "versionType": "custom"}], "defaultStatus": "unaffected"}, {"cpes": ["cpe:2.3:o:abb:matrix-264_firmware:3.0.0:*:*:*:*:*:*:*"], "vendor": "abb", "product": "matrix-264_firmware", "versions": [{"status": "affected", "version": "3.0.0", "lessThan": "3.07.02", "versionType": "custom"}], "defaultStatus": "unaffected"}, {"cpes": ["cpe:2.3:o:abb:aspect-ent-12_firmware:3.0.0:*:*:*:*:*:*:*"], "vendor": "abb", "product": "aspect-ent-12_firmware", "versions": [{"status": "affected", "version": "3.0.0", "lessThan": "3.07.02", "versionType": "custom"}], "defaultStatus": "unaffected"}, {"cpes": ["cpe:2.3:o:abb:aspect-ent-256_firmware:3.0.0:*:*:*:*:*:*:*"], "vendor": "abb", "product": "aspect-ent-256_firmware", "versions": [{"status": "affected", "version": "3.0.0", "lessThan": "3.07.02", "versionType": "custom"}], "defaultStatus": "unaffected"}, {"cpes": ["cpe:2.3:o:abb:matrix-296_firmware:3.0.0:*:*:*:*:*:*:*"], "vendor": "abb", "product": "matrix-296_firmware", "versions": [{"status": "affected", "version": "3.0.0", "lessThan": "3.07.02", "versionType": "custom"}], "defaultStatus": "unaffected"}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-07-03T14:01:53.880Z"}}], "cna": {"title": "Hard coded default credential contained in install package", "source": {"discovery": "UNKNOWN"}, "credits": [{"lang": "en", "type": "finder", "value": "ABB likes to thank https://divd.nl for reporting the vulnerability in responsible disclosure."}], "impacts": [{"capecId": "CAPEC-49", "descriptions": [{"lang": "en", "value": "CAPEC-49 Password Brute Forcing"}]}], "metrics": [{"format": "CVSS", "cvssV4_0": {"Safety": "NEGLIGIBLE", "version": "4.0", "Recovery": "USER", "baseScore": 8.7, "Automatable": "NO", "attackVector": "ADJACENT", "baseSeverity": "HIGH", "valueDensity": "DIFFUSE", "vectorString": "CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/S:N/AU:N/R:U/V:D/RE:L/U:Red", "providerUrgency": "RED", "userInteraction": "NONE", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "NONE", "subIntegrityImpact": "NONE", "vulnIntegrityImpact": "HIGH", "subAvailabilityImpact": "NONE", "vulnAvailabilityImpact": "HIGH", "subConfidentialityImpact": "NONE", "vulnConfidentialityImpact": "HIGH", "vulnerabilityResponseEffort": "LOW"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}, {"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.8, "attackVector": "ADJACENT_NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "ABB", "product": "ASPECT Enterprise (ASP-ENT-x)", "versions": [{"status": "affected", "version": "3.07"}], "platforms": ["Linux"], "packageName": "Installer", "collectionURL": "https://new.abb.com/low-voltage/de/produkte/gebaeudeautomation/produktsortiment/cylon/produkte/aspect-enterprise", "defaultStatus": "unaffected"}, {"vendor": "ABB", "product": "NEXUS Series (NEX-2x, NEXUS-3-x)", "versions": [{"status": "affected", "version": "3.07"}], "platforms": ["Linux"], "packageName": "Installer", "collectionURL": "https://new.abb.com/low-voltage/de/produkte/gebaeudeautomation/produktsortiment/cylon/produkte/nexus-series", "defaultStatus": "unaffected"}, {"vendor": "ABB", "product": "MATRIX Series(MAT-x)", "versions": [{"status": "affected", "version": "3.07"}], "platforms": ["Linux"], "packageName": "Installer", "collectionURL": "https://new.abb.com/low-voltage/de/produkte/gebaeudeautomation/produktsortiment/cylon/produkte/matrix", "defaultStatus": "unaffected"}], "solutions": [{"lang": "en", "value": "ABB Strongly recommends the following actions on any released SW version of ASPECT:\n- Change the PHPmyAdmin Password according to the system manual:\u00a0 All customers who operate the ASPECT System with its default password are recommended to replace this default password with a unique, secure password, containing a\nmix of characters, numbers, and special characters with at least 10 characters in length.\n- Never expose open ports to the ASPECT product towards the Internet or any insecure network.\n- When remote access is required, use secure methods, such as Virtual Private Networks (VPNs).\nRecognize that VPNs may have vulnerabilities and should be updated to the most current version\navailable. Also, understand that VPNs are only as secure as the connected devices.\n- ABB recommends that customers shall apply the latest product update at the earliest convenience.", "supportingMedia": [{"type": "text/html", "value": "\n\nABB Strongly recommends the following actions on any released SW version of ASPECT:\n- Change the PHPmyAdmin Password according to the system manual:  All customers who operate the ASPECT System with its default password are recommended to replace this default password with a unique, secure password, containing a\nmix of characters, numbers, and special characters with at least 10 characters in length.\n- Never expose open ports to the ASPECT product towards the Internet or any insecure network.\n- When remote access is required, use secure methods, such as Virtual Private Networks (VPNs).\nRecognize that VPNs may have vulnerabilities and should be updated to the most current version\navailable. Also, understand that VPNs are only as secure as the connected devices.\n- ABB recommends that customers shall apply the latest product update at the earliest convenience.\n\n\n<br>", "base64": false}]}], "datePublic": "2024-07-01T03:30:00.000Z", "references": [{"url": "https://search.abb.com/library/Download.aspx?DocumentID=9AKK108469A6101&LanguageCode=en&DocumentPartId=&Action=Launch"}], "workarounds": [{"lang": "en", "value": "ASPECT system shall not be connected directly to untrusted networks such as the Internet.\nIf remote access to an ASPECT system is a customer requirement, the system shall operate behind a firewall. User accessing ASPECT remotely shall do this using a VPN Gateway allowing access to the particular\nnetwork segment where ASPECT is installed and configured in.\nNote: it is crucial that the VPN Gateway and Network is setup in accordance with best industry standards and maintained in terms of security patches for all related components.\nAny default credentials shall be exchanged with a unique credential supporting adequate strength.", "supportingMedia": [{"type": "text/html", "value": "\n\nASPECT system shall not be connected directly to untrusted networks such as the Internet.\nIf remote access to an ASPECT system is a customer requirement, the system shall operate behind a firewall. User accessing ASPECT remotely shall do this using a VPN Gateway allowing access to the particular\nnetwork segment where ASPECT is installed and configured in.\nNote: it is crucial that the VPN Gateway and Network is setup in accordance with best industry standards and maintained in terms of security patches for all related components.\nAny default credentials shall be exchanged with a unique credential supporting adequate strength. \n\n<br>", "base64": false}]}], "x_generator": {"engine": "Vulnogram 0.2.0"}, "descriptions": [{"lang": "en", "value": "Default credential in install package in ABB ASPECT; NEXUS Series; MATRIX Series version 3.07 allows attacker to login to product instances wrongly configured.", "supportingMedia": [{"type": "text/html", "value": "Default credential in install package in ABB ASPECT; NEXUS Series; MATRIX Series version 3.07 allows attacker to login to product instances wrongly configured.<br>", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-1392", "description": "CWE-1392: Use of Default Credentials"}]}], "providerMetadata": {"orgId": "2b718523-d88f-4f37-9bbd-300c20644bf9", "shortName": "ABB", "dateUpdated": "2024-07-02T00:10:15.764Z"}}}, "cveMetadata": {"cveId": "CVE-2024-4007", "state": "PUBLISHED", "dateUpdated": "2024-08-01T20:26:57.247Z", "dateReserved": "2024-04-19T17:08:37.839Z", "assignerOrgId": "2b718523-d88f-4f37-9bbd-300c20644bf9", "datePublished": "2024-07-01T12:06:53.048Z", "assignerShortName": "ABB"}, "dataVersion": "5.1"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "Default credential in install package in ABB ASPECT; NEXUS Series; MATRIX Series version 3.07 allows attacker to login to product instances wrongly configured."}, {"lang": "es", "value": "Credencial predeterminada en el paquete de instalaci\u00f3n en ABB ASPECT; NEXUS Series; MATRIX Series versi\u00f3n 3.07 permite a un atacante iniciar sesi\u00f3n en instancias de productos mal configuradas."}], "id": "CVE-2024-4007", "lastModified": "2024-07-01T16:37:39.040", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "ADJACENT_NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9, "source": "cybersecurity@ch.abb.com", "type": "Secondary"}], "cvssMetricV40": [{"cvssData": {"attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "ADJACENT", "automatable": "NO", "availabilityRequirements": "NOT_DEFINED", "baseScore": 8.7, "baseSeverity": "HIGH", "confidentialityRequirements": "NOT_DEFINED", "exploitMaturity": "NOT_DEFINED", "integrityRequirements": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubsequentSystemAvailability": "NOT_DEFINED", "modifiedSubsequentSystemConfidentiality": "NOT_DEFINED", "modifiedSubsequentSystemIntegrity": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnerableSystemAvailability": "NOT_DEFINED", "modifiedVulnerableSystemConfidentiality": "NOT_DEFINED", "modifiedVulnerableSystemIntegrity": "NOT_DEFINED", "privilegesRequired": "NONE", "providerUrgency": "RED", "recovery": "USER", "safety": "NEGLIGIBLE", "subsequentSystemAvailability": "NONE", "subsequentSystemConfidentiality": "NONE", "subsequentSystemIntegrity": "NONE", "userInteraction": "NONE", "valueDensity": "DIFFUSE", "vectorString": "CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:N/AU:N/R:U/V:D/RE:L/U:Red", "version": "4.0", "vulnerabilityResponseEffort": "LOW", "vulnerableSystemAvailability": "HIGH", "vulnerableSystemConfidentiality": "HIGH", "vulnerableSystemIntegrity": "HIGH"}, "source": "cybersecurity@ch.abb.com", "type": "Secondary"}]}, "published": "2024-07-01T13:15:06.077", "references": [{"source": "cybersecurity@ch.abb.com", "url": "https://search.abb.com/library/Download.aspx?DocumentID=9AKK108469A6101&LanguageCode=en&DocumentPartId=&Action=Launch"}], "sourceIdentifier": "cybersecurity@ch.abb.com", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-1392"}], "source": "cybersecurity@ch.abb.com", "type": "Primary"}]}