← Back to home
ICSA-20-175-03  ·  Published 2020-06-23  ·  View on CISA ICS-CERT ↗

ABB Device Library Wizard

CVSS 7.8 HIGH

Risk Summary

Successful exploitation of this vulnerability could allow a low-level user to escalate privileges and fully compromise the device.

CVEs (1)

Remediations

  • Device Library Wizard: Version 6.0.3.2 RU1
  • Device Library Wizard: Version 6.0.3.3
  • Device Library Wizard: Version 6.1.X and later
  • ABB recommends disabling interactive logon for the service account (both local and remote).
  • For more information please refer to ABB's Cybersecurity Advisory.

Affected Vendors

ABB

Affected Products (1)

ABB · Device Library Wizard 6.0.X | 6.0.3.1 | 6.0.3.2

Affected Sectors

Chemical, Critical Manufacturing, Dams, Energy, Food and Agriculture, Water and Wastewater Systems

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more