📦 Matrix 296 Firmware
by Abb
🔍 What is Matrix 296 Firmware?
Description coming soon...
🛡️ Security Overview
Click on a severity to filter vulnerabilities
⚠️ Known Vulnerabilities
This CVE describes a use of hard-coded credentials vulnerability in multiple ABB industrial control system products. Attackers can use these embedded credentials to gain unauthorized access to affecte...
This vulnerability in ABB industrial control system web interfaces exposes authentication credentials in clear text or Base64 encoding during transmission. Attackers can intercept these credentials to...
This CVE describes a Server-Side Request Forgery (SSRF) vulnerability in ABB industrial control system products that allows attackers to make the server send unauthorized requests to internal or exter...
CVE-2024-51548 is a dangerous unrestricted file upload vulnerability in ABB ASPECT, NEXUS, and MATRIX series products that allows attackers to upload malicious scripts. If exploited, this could lead t...
This CVE describes a data validation/sanitization vulnerability in ABB ASPECT industrial control system devices that allows injection of unvalidated data. Attackers could potentially execute arbitrary...
CVE-2024-51554 is a default credential vulnerability in ABB ASPECT products on Linux that allows attackers to gain unauthorized access using publicly known default credentials. This affects ABB ASPECT...
This CVE describes a username enumeration vulnerability in ABB industrial control system products that allows attackers to access user management functions. Attackers can add, delete, modify, and list...
This critical vulnerability in ABB ASPECT, NEXUS, and MATRIX series allows remote attackers to execute arbitrary code on affected systems by sending specially crafted input. It affects industrial cont...
This CVE describes weak password reset rules in ABB building automation systems that allow storage of weak passwords, potentially enabling unauthorized administrative or application access. Affected s...
CVE-2024-11317 is a session fixation vulnerability in ABB ASPECT, NEXUS, and MATRIX series products that allows attackers to set a user's session ID before authentication, enabling session hijacking a...
This vulnerability allows attackers to access files without authorization in ABB ASPECT-Enterprise, NEXUS Series, and MATRIX Series web servers. It affects all systems running version 3.08.01 of these...
This vulnerability allows attackers to bypass MD5 checksum validation in ABB industrial control systems, potentially enabling malicious code execution or unauthorized modifications. It affects ABB ASP...
This CVE allows attackers to download configuration files containing dependency information from ABB industrial control systems. This affects ABB ASPECT-Enterprise, NEXUS Series, and MATRIX Series ver...
This vulnerability in ABB's Service Control allows attackers to access service restart requests and virtual machine configuration settings. It affects ABB ASPECT-Enterprise, NEXUS Series, and MATRIX S...
This CVE describes a Denial of Service vulnerability in ABB's ASPECT, NEXUS, and MATRIX series products. Attackers can exploit this vulnerability to cause service disruptions in affected industrial co...
This CVE describes a file size check vulnerability in ABB ASPECT, NEXUS, and MATRIX series products that allows attackers to bypass file size limits. This could lead to resource exhaustion or unexpect...
This vulnerability involves default credentials in ABB ASPECT, NEXUS, and MATRIX Series version 3.07 install packages. Attackers can exploit this to log into product instances that have been incorrect...
This CVE describes an improper privilege management vulnerability in ABB's ASPECT-Enterprise, NEXUS Series, and MATRIX Series products running on Linux. It allows authenticated attackers to escalate p...