CVE-2023-0863 — HIGH (8.8) — White Hats Nepal

Q: How severe is CVE-2023-0863?

CVE-2023-0863 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2023-0863?

Check the references section above for vendor advisories and patch information. Affected products include: Abb Terra Ac Wallbox Ul40 Firmware, Abb Terra Ac Wallbox Ul40, Abb Terra Ac Wallbox 80A Firmware, Abb Terra Ac Wallbox 80A, Abb Terra Ac Wallbox Ul32A Firmware.

Vulnerability Description

Improper Authentication vulnerability in ABB Terra AC wallbox (UL40/80A), ABB Terra AC wallbox (UL32A), ABB Terra AC wallbox (CE) (Terra AC MID), ABB Terra AC wallbox (CE) Terra AC Juno CE, ABB Terra AC wallbox (CE) Terra AC PTB, ABB Terra AC wallbox (CE) Symbiosis, ABB Terra AC wallbox (JP).This issue affects Terra AC wallbox (UL40/80A): from 1.0;0 through 1.5.5; Terra AC wallbox (UL32A) : from 1.0;0 through 1.6.5; Terra AC wallbox (CE) (Terra AC MID): from 1.0;0 through 1.6.5; Terra AC wallbox (CE) Terra AC Juno CE: from 1.0;0 through 1.6.5; Terra AC wallbox (CE) Terra AC PTB : from 1.0;0 through 1.5.25; Terra AC wallbox (CE) Symbiosis: from 1.0;0 through 1.2.7; Terra AC wallbox (JP): from 1.0;0 through 1.6.5.

CVSS Score

8.8

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Abb	Terra Ac Wallbox Ul40 Firmware	>= 1.0.0, < 1.5.6
Abb	Terra Ac Wallbox Ul40	-
Abb	Terra Ac Wallbox 80A Firmware	>= 1.0.0, < 1.5.6
Abb	Terra Ac Wallbox 80A	-
Abb	Terra Ac Wallbox Ul32A Firmware	>= 1.0.0, < 1.6.6
Abb	Terra Ac Wallbox Ul32A	-
Abb	Terra Ac Wallbox Jp Firmware	>= 1.0.0, < 1.6.6
Abb	Terra Ac Wallbox Jp	-
Abb	Terra Ac Wallbox Ce Mid Firmware	>= 1.0.0, < 1.6.6
Abb	Terra Ac Wallbox Ce Mid	-
Abb	Terra Ac Wallbox Ce Juno Firmware	>= 1.0.0, < 1.6.6
Abb	Terra Ac Wallbox Ce Juno	-
Abb	Terra Ac Wallbox Ce Ptb Firmware	>= 1.0.0, < 1.5.26
Abb	Terra Ac Wallbox Ce Ptb	-
Abb	Terra Ac Wallbox Ce Symbiosis Firmware	>= 1.0.0, < 1.2.8
Abb	Terra Ac Wallbox Ce Symbiosis	-

Related Weaknesses (CWE)

CWE-287

References

https://search.abb.com/library/Download.aspx?DocumentID=9AKK108468A1415&LanguageVendor Advisory
https://search.abb.com/library/Download.aspx?DocumentID=9AKK108468A1415&LanguageVendor Advisory

FAQ

What is CVE-2023-0863?

CVE-2023-0863 is a vulnerability with a CVSS score of 8.8 (HIGH). Improper Authentication vulnerability in ABB Terra AC wallbox (UL40/80A), ABB Terra AC wallbox (UL32A), ABB Terra AC wallbox (CE) (Terra AC MID), ABB Terra AC wallbox (CE) Terra AC Juno CE, ABB Terra ...

How severe is CVE-2023-0863?

CVE-2023-0863 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2023-0863?

Check the references section above for vendor advisories and patch information. Affected products include: Abb Terra Ac Wallbox Ul40 Firmware, Abb Terra Ac Wallbox Ul40, Abb Terra Ac Wallbox 80A Firmware, Abb Terra Ac Wallbox 80A, Abb Terra Ac Wallbox Ul32A Firmware.