Nexus 264 A Firmware

nexus-264-a_firmware

Vendor: Abb • 28 CVEs

CVEs (28)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2024-51547 1Abb 19Aspect Ent 12 Firmware Aspect Ent 256 FirmwareAspect Ent 2 Firmware+16 more May 23, 2025 Feb 6, 2025 9.3 CRITICAL· v4 9.8 CRITICAL· v3 N/A· v2 Use of Hard-coded Credentials vulnerability in ABB ASPECT-Enterprise, ABB NEXUS Series, ABB MATRIX Series.This issue affects ASPECT-Enterprise: through 3.; NEXUS Series: through 3.; MATRIX Series: through 3.*.
CVE-2024-6784 1Abb 19Aspect Ent 12 Firmware Aspect Ent 256 FirmwareAspect Ent 2 Firmware+16 more Apr 10, 2025 Dec 5, 2024 8.7 HIGH· v4 9.9 CRITICAL· v3 N/A· v2 Server-Side Request Forgery vulnerabilities were found providing a potential for access to unauthorized resources and unintended information disclosure. Affected products: ABB ASPECT - Enterprise v3.08.02; NEXUS Seri...Show more Server-Side Request Forgery vulnerabilities were found providing a potential for access to unauthorized resources and unintended information disclosure. Affected products: ABB ASPECT - Enterprise v3.08.02; NEXUS Series v3.08.02; MATRIX Series v3.08.02Show less
CVE-2024-6516 1Abb 19Aspect Ent 12 Firmware Aspect Ent 256 FirmwareAspect Ent 2 Firmware+16 more Feb 27, 2025 Dec 5, 2024 9.3 CRITICAL· v4 6.1 MEDIUM· v3 N/A· v2 Cross Site Scripting vulnerabilities where found providing a potential for malicious scripts to be injected into a client browser. Affected products: ABB ASPECT - Enterprise v3.08.02; NEXUS Series v3.08.02; MATRIX S...Show more Cross Site Scripting vulnerabilities where found providing a potential for malicious scripts to be injected into a client browser. Affected products: ABB ASPECT - Enterprise v3.08.02; NEXUS Series v3.08.02; MATRIX Series v3.08.02Show less
CVE-2024-6515 1Abb 19Aspect Ent 12 Firmware Aspect Ent 256 FirmwareAspect Ent 2 Firmware+16 more Feb 27, 2025 Dec 5, 2024 8.7 HIGH· v4 8.1 HIGH· v3 N/A· v2 Web browser interface may manipulate application username/password in clear text or Base64 encoding providing a higher probability of unintended credentails exposure. Affected products: ABB ASPECT - Enterprise v3.08....Show more Web browser interface may manipulate application username/password in clear text or Base64 encoding providing a higher probability of unintended credentails exposure. Affected products: ABB ASPECT - Enterprise v3.08.02; NEXUS Series v3.08.02; MATRIX Series v3.08.02Show less
CVE-2024-51554 1Abb 19Aspect Ent 12 Firmware Aspect Ent 256 FirmwareAspect Ent 2 Firmware+16 more Feb 27, 2025 Dec 5, 2024 8.8 HIGH· v4 9.8 CRITICAL· v3 N/A· v2 Default Credentail vulnerabilities in ASPECT on Linux allows access to the product using publicly available default credentials. Affected products: ABB ASPECT - Enterprise v3.08.02; NEXUS Series v3.08.02; MATRIX Ser...Show more Default Credentail vulnerabilities in ASPECT on Linux allows access to the product using publicly available default credentials. Affected products: ABB ASPECT - Enterprise v3.08.02; NEXUS Series v3.08.02; MATRIX Series v3.08.02Show less
CVE-2024-51551 1Abb 19Aspect Ent 12 Firmware Aspect Ent 256 FirmwareAspect Ent 2 Firmware+16 more Feb 27, 2025 Dec 5, 2024 9.3 CRITICAL· v4 10.0 CRITICAL· v3 N/A· v2 Default Credentail vulnerabilities in ASPECT on Linux allows access to the product using publicly available default credentials. Affected products: ABB ASPECT - Enterprise v3.07.02; NEXUS Series v3.07.02; MATRIX Ser...Show more Default Credentail vulnerabilities in ASPECT on Linux allows access to the product using publicly available default credentials. Affected products: ABB ASPECT - Enterprise v3.07.02; NEXUS Series v3.07.02; MATRIX Series v3.07.02Show less
CVE-2024-51550 1Abb 19Aspect Ent 12 Firmware Aspect Ent 256 FirmwareAspect Ent 2 Firmware+16 more Feb 27, 2025 Dec 5, 2024 9.3 CRITICAL· v4 9.8 CRITICAL· v3 N/A· v2 Data Validation / Data Sanitization vulnerabilities in Linux allows unvalidated and unsanitized data to be injected in an Aspect device. Affected products: ABB ASPECT - Enterprise v3.08.02; NEXUS Series v3.08.02; M...Show more Data Validation / Data Sanitization vulnerabilities in Linux allows unvalidated and unsanitized data to be injected in an Aspect device. Affected products: ABB ASPECT - Enterprise v3.08.02; NEXUS Series v3.08.02; MATRIX Series v3.08.02Show less
CVE-2024-51549 1Abb 19Aspect Ent 12 Firmware Aspect Ent 256 FirmwareAspect Ent 2 Firmware+16 more Feb 27, 2025 Dec 5, 2024 9.3 CRITICAL· v4 9.4 CRITICAL· v3 N/A· v2 Absolute File Traversal vulnerabilities allows access and modification of un-intended resources. Affected products: ABB ASPECT - Enterprise v3.08.02; NEXUS Series v3.08.02; MATRIX Series v3.08.02
CVE-2024-51548 1Abb 19Aspect Ent 12 Firmware Aspect Ent 256 FirmwareAspect Ent 2 Firmware+16 more Feb 27, 2025 Dec 5, 2024 8.7 HIGH· v4 8.8 HIGH· v3 N/A· v2 Dangerous File Upload vulnerabilities allow upload of malicious scripts. Affected products: ABB ASPECT - Enterprise v3.08.02; NEXUS Series v3.08.02; MATRIX Series v3.08.02
CVE-2024-51546 1Abb 19Aspect Ent 12 Firmware Aspect Ent 256 FirmwareAspect Ent 2 Firmware+16 more Apr 10, 2025 Dec 5, 2024 8.7 HIGH· v4 7.5 HIGH· v3 N/A· v2 Credentials Disclosure vulnerabilities allow access to on board project back-up bundles. Affected products: ABB ASPECT - Enterprise v3.08.02; NEXUS Series v3.08.02; MATRIX Series v3.08.02
CVE-2024-51545 1Abb 19Aspect Ent 12 Firmware Aspect Ent 256 FirmwareAspect Ent 2 Firmware+16 more Feb 27, 2025 Dec 5, 2024 9.3 CRITICAL· v4 9.8 CRITICAL· v3 N/A· v2 Username Enumeration vulnerabilities allow access to application level username add, delete, modify and list functions. Affected products: ABB ASPECT - Enterprise v3.08.02; NEXUS Series v3.08.02; MATRIX Series v3.08...Show more Username Enumeration vulnerabilities allow access to application level username add, delete, modify and list functions. Affected products: ABB ASPECT - Enterprise v3.08.02; NEXUS Series v3.08.02; MATRIX Series v3.08.02Show less
CVE-2024-51544 1Abb 19Aspect Ent 12 Firmware Aspect Ent 256 FirmwareAspect Ent 2 Firmware+16 more Apr 10, 2025 Dec 5, 2024 8.8 HIGH· v4 8.2 HIGH· v3 N/A· v2 Service Control vulnerabilities allow access to service restart requests and vm configuration settings. Affected products: ABB ASPECT - Enterprise v3.08.02; NEXUS Series v3.08.02; MATRIX Series v3.08.02
CVE-2024-51543 1Abb 19Aspect Ent 12 Firmware Aspect Ent 256 FirmwareAspect Ent 2 Firmware+16 more Feb 27, 2025 Dec 5, 2024 8.8 HIGH· v4 7.5 HIGH· v3 N/A· v2 Information Disclosure vulnerabilities allow access to application configuration information. Affected products: ABB ASPECT - Enterprise v3.08.02; NEXUS Series v3.08.02; MATRIX Series v3.08.02
CVE-2024-51542 1Abb 19Aspect Ent 12 Firmware Aspect Ent 256 FirmwareAspect Ent 2 Firmware+16 more Apr 10, 2025 Dec 5, 2024 8.8 HIGH· v4 8.2 HIGH· v3 N/A· v2 Configuration Download vulnerabilities allow access to dependency configuration information. Affected products: ABB ASPECT - Enterprise v3.08.02; NEXUS Series v3.08.02; MATRIX Series v3.08.02
CVE-2024-51541 1Abb 19Aspect Ent 12 Firmware Aspect Ent 256 FirmwareAspect Ent 2 Firmware+16 more Feb 27, 2025 Dec 5, 2024 8.8 HIGH· v4 7.5 HIGH· v3 N/A· v2 Local File Inclusion vulnerabilities allow access to sensitive system information. Affected products: ABB ASPECT - Enterprise v3.08.02; NEXUS Series v3.08.02; MATRIX Series v3.08.02
CVE-2024-48847 1Abb 19Aspect Ent 12 Firmware Aspect Ent 256 FirmwareAspect Ent 2 Firmware+16 more Feb 27, 2025 Dec 5, 2024 8.8 HIGH· v4 9.1 CRITICAL· v3 N/A· v2 MD5 Checksum Bypass vulnerabilities where found exploiting a weakness in the way an application dependency calculates or validates MD5 checksum hashes. Affected products: ABB ASPECT - Enterprise v3.08.01; NEXUS Serie...Show more MD5 Checksum Bypass vulnerabilities where found exploiting a weakness in the way an application dependency calculates or validates MD5 checksum hashes. Affected products: ABB ASPECT - Enterprise v3.08.01; NEXUS Series v3.08.01; MATRIX Series v3.08.01Show less
CVE-2024-48846 1Abb 19Aspect Ent 12 Firmware Aspect Ent 256 FirmwareAspect Ent 2 Firmware+16 more Feb 27, 2025 Dec 5, 2024 7.1 HIGH· v4 7.3 HIGH· v3 N/A· v2 Cross Site Request Forgery vulnerabilities where found providing a potiential for exposing sensitive information or changing system settings. Affected products: ABB ASPECT - Enterprise v3.08.02; NEXUS Series v3.08.02...Show more Cross Site Request Forgery vulnerabilities where found providing a potiential for exposing sensitive information or changing system settings. Affected products: ABB ASPECT - Enterprise v3.08.02; NEXUS Series v3.08.02; MATRIX Series v3.08.02Show less
CVE-2024-48845 1Abb 19Aspect Ent 12 Firmware Aspect Ent 256 FirmwareAspect Ent 2 Firmware+16 more Feb 27, 2025 Dec 5, 2024 9.3 CRITICAL· v4 9.8 CRITICAL· v3 N/A· v2 Weak Password Reset Rules vulnerabilities where found providing a potiential for the storage of weak passwords that could facilitate unauthorized admin/application access. Affected products: ABB ASPECT - Enterprise...Show more Weak Password Reset Rules vulnerabilities where found providing a potiential for the storage of weak passwords that could facilitate unauthorized admin/application access. Affected products: ABB ASPECT - Enterprise v3.07.02; NEXUS Series v3.07.02; MATRIX Series v3.07.02Show less
CVE-2024-48844 1Abb 19Aspect Ent 12 Firmware Aspect Ent 256 FirmwareAspect Ent 2 Firmware+16 more Feb 27, 2025 Dec 5, 2024 7.2 HIGH· v4 6.5 MEDIUM· v3 N/A· v2 Denial of Service vulnerabilities where found providing a potiential for device service disruptions. Affected products: ABB ASPECT - Enterprise v3.08.02; NEXUS Series v3.08.02; MATRIX Series v3.08.02
CVE-2024-48843 1Abb 19Aspect Ent 12 Firmware Aspect Ent 256 FirmwareAspect Ent 2 Firmware+16 more Feb 27, 2025 Dec 5, 2024 7.6 HIGH· v4 7.5 HIGH· v3 N/A· v2 Denial of Service vulnerabilities where found providing a potiential for device service disruptions. Affected products: ABB ASPECT - Enterprise v3.08.02; NEXUS Series v3.08.02; MATRIX Series v3.08.02

12 Next