Risk Summary
Successful exploitation of this vulnerability could allow an attacker to prevent legitimate access to an affected system node, remotely cause an affected system node to stop, take control of an affected system node, or insert and run arbitrary code in an affected system node.
CVEs (1)
Remediations
- ABB recommends users apply the BSP update on affected CP600 control panels at their earliest convenience.
- New version of PB610 Panel Builder 600 v2.8.0.424, which is provided via Automation Builder 2.2 SP2.
- New version of BSP (board support package) UN30 v2.31.
- Please see ABB cybersecurity advisory document number 3ADR010402 for more information about this vulnerability and two other security issues and their mitigations.
Affected Vendors
ABB
Affected Products (8)
ABB
·
CP651
1SAP551100R0001 (revision index B1 with BSP <= UN30 1.76)
ABB
·
CP665
1SAP565100R0001 (revision index B1 with BSP <= UN30 1.76)
ABB
·
CP661
1SAP561100R0001 (revision index B1 with BSP <= UN30 1.76)
ABB
·
CP661-WEB
1SAP561200R0001 (revision index A0 with BSP <= UN30 1.76)
ABB
·
CP676-WEB
1SAP576200R0001 (revision index A0 with BSP <= UN30 1.76)
ABB
·
CP676
1SAP576100R0001 (revision index B1 with BSP <= UN30 1.76)
ABB
·
CP651-WEB
1SAP551200R0001 (revision index A0 with BSP <= UN30 1.76)
ABB
·
CP665-WEB
1SAP565200R0001 (revision index A0 with BSP <= UN30 1.76)
Affected Sectors
Critical Manufacturing
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more