CVE-2019-7229

Published: Jun 24, 2019Modified: Nov 21, 2024

8.3

Vector

CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H

Exploitability: 1.6 / Impact: 6.0

Source: NVD

Description

The ABB CP635 HMI uses two different transmission methods to upgrade its firmware and its software components: "Utilization of USB/SD Card to flash the device" and "Remote provisioning process via ABB Panel Builder 600 over FTP." Neither of these transmission methods implements any form of encryption or authenticity checks against the new firmware HMI software binary files.

Affected (8)

Products: Abb: Board Support Package Un31, Cp620 Firmware, Cp620 Web Firmware, Cp630 Firmware, Cp630 Web Firmware, Cp635 Firmware, Cp635 B Firmware, Cp635 Web Firmware

Abb

8 products

Board Support Package Un31

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Abb Board Support Package Un31	Before 2.31

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Abb Cp620 Firmware	Before 2.8.0.424

Running on/with	Platform Versions
Abb Cp620	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Abb Cp620 Web Firmware	Before 2.8.0.424

Running on/with	Platform Versions
Abb Cp620 Web	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Abb Cp630 Firmware	Before 2.0.8.424

Running on/with	Platform Versions
Abb Cp630	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Abb Cp630 Web Firmware	Before 2.8.0.424

Running on/with	Platform Versions
Abb Cp630 Web	All versions

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Abb Cp635 Firmware	Before 2.8.0.424

Running on/with	Platform Versions
Abb Cp635	All versions

Configuration G

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Abb Cp635 B Firmware	Before 2.8.0.424

Running on/with	Platform Versions
Abb Cp635 B	All versions

Configuration H

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Abb Cp635 Web Firmware	Before 2.8.0.424

Running on/with	Platform Versions
Abb Cp635 Web	All versions

Related CWEs

CWE-494

Download of Code Without Integrity Check

The product downloads source code or an executable from a remote location and executes the code without sufficiently verifying the origin and integrity of the code.

References (12)

http://packetstormsecurity.com/files/153387/ABB-HMI-Missing-Signature-Verification.html

Source: cve@mitre.org

ExploitThird Party AdvisoryVDB Entry

http://seclists.org/fulldisclosure/2019/Jun/34

Source: cve@mitre.org

ExploitMailing ListThird Party Advisory

http://seclists.org/fulldisclosure/2019/Jun/34

Source: cve@mitre.org

ExploitMailing ListThird Party Advisory

https://search.abb.com/library/Download.aspx?DocumentID=3ADR010376&LanguageCode=en&DocumentPartId=&Action=Launch

Source: cve@mitre.org

MitigationPatchVendor Advisory

https://search.abb.com/library/Download.aspx?DocumentID=3ADR010402&LanguageCode=en&DocumentPartId=&Action=Launch

Source: cve@mitre.org

MitigationPatchVendor Advisory

https://www.darkmatter.ae/xen1thlabs/abb-hmi-absence-of-signature-verification-vulnerability-xl-19-005/

Source: cve@mitre.org

ExploitThird Party Advisory

http://packetstormsecurity.com/files/153387/ABB-HMI-Missing-Signature-Verification.html