Vulnerability Description
Incorrect Permission Assignment for Critical Resource vulnerability in ABB REX640 PCL1, REX640 PCL2, REX640 PCL3 allows an authenticated attacker to launch an attack against the user database file and try to take control of an affected system node.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Abb | Rex640 Pcl1 Firmware | <= 1.0.7 |
| Abb | Rex640 Pcl1 | - |
| Abb | Rex640 Pcl2 Firmware | < 1.1.4 |
| Abb | Rex640 Pcl2 | - |
| Abb | Rex640 Pcl3 Firmware | < 1.2.1 |
| Abb | Rex640 Pcl3 | - |
Related Weaknesses (CWE)
References
- https://search.abb.com/library/Download.aspx?DocumentID=2NGA001421MitigationVendor Advisory
- https://search.abb.com/library/Download.aspx?DocumentID=2NGA001421MitigationVendor Advisory
FAQ
What is CVE-2022-1596?
CVE-2022-1596 is a vulnerability with a CVSS score of 6.5 (MEDIUM). Incorrect Permission Assignment for Critical Resource vulnerability in ABB REX640 PCL1, REX640 PCL2, REX640 PCL3 allows an authenticated attacker to launch an attack against the user database file and...
How severe is CVE-2022-1596?
CVE-2022-1596 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-1596?
Check the references section above for vendor advisories and patch information. Affected products include: Abb Rex640 Pcl1 Firmware, Abb Rex640 Pcl1, Abb Rex640 Pcl2 Firmware, Abb Rex640 Pcl2, Abb Rex640 Pcl3 Firmware.