CVE-2023-0864 — HIGH (7.1) — White Hats Nepal

Q: How severe is CVE-2023-0864?

CVE-2023-0864 has been rated HIGH with a CVSS base score of 7.1/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2023-0864?

Check the references section above for vendor advisories and patch information. Affected products include: Abb Terra Ac Wallbox Ul40 Firmware, Abb Terra Ac Wallbox Ul40, Abb Terra Ac Wallbox 80A Firmware, Abb Terra Ac Wallbox 80A, Abb Terra Ac Wallbox Ul32A Firmware.

Vulnerability Description

Cleartext Transmission of Sensitive Information vulnerability in ABB Terra AC wallbox (UL40/80A), ABB Terra AC wallbox (UL32A), ABB Terra AC wallbox (CE) (Terra AC MID), ABB Terra AC wallbox (CE) Terra AC Juno CE, ABB Terra AC wallbox (CE) Terra AC PTB, ABB Terra AC wallbox (CE) Symbiosis, ABB Terra AC wallbox (JP).This issue affects Terra AC wallbox (UL40/80A): from 1.0;0 through 1.5.5; Terra AC wallbox (UL32A) : from 1.0;0 through 1.6.5; Terra AC wallbox (CE) (Terra AC MID): from 1.0;0 through 1.6.5; Terra AC wallbox (CE) Terra AC Juno CE: from 1.0;0 through 1.6.5; Terra AC wallbox (CE) Terra AC PTB : from 1.0;0 through 1.5.25; Terra AC wallbox (CE) Symbiosis: from 1.0;0 through 1.2.7; Terra AC wallbox (JP): from 1.0;0 through 1.6.5.

CVSS Score

7.1

HIGH

CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

Attack Vector

ADJACENT_NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Abb	Terra Ac Wallbox Ul40 Firmware	>= 1.0.0, < 1.5.6
Abb	Terra Ac Wallbox Ul40	-
Abb	Terra Ac Wallbox 80A Firmware	>= 1.0.0, < 1.5.6
Abb	Terra Ac Wallbox 80A	-
Abb	Terra Ac Wallbox Ul32A Firmware	>= 1.0.0, < 1.6.6
Abb	Terra Ac Wallbox Ul32A	-
Abb	Terra Ac Wallbox Jp Firmware	>= 1.0.0, < 1.6.6
Abb	Terra Ac Wallbox Jp	-
Abb	Terra Ac Wallbox Ce Mid Firmware	>= 1.0.0, < 1.6.6
Abb	Terra Ac Wallbox Ce Mid	-
Abb	Terra Ac Wallbox Ce Juno Firmware	>= 1.0.0, < 1.6.6
Abb	Terra Ac Wallbox Ce Juno	-
Abb	Terra Ac Wallbox Ce Ptb Firmware	>= 1.0.0, < 1.5.26
Abb	Terra Ac Wallbox Ce Ptb	-
Abb	Terra Ac Wallbox Ce Symbiosis Firmware	>= 1.0.0, < 1.2.8
Abb	Terra Ac Wallbox Ce Symbiosis	-

Related Weaknesses (CWE)

CWE-319

References

https://search.abb.com/library/Download.aspx?DocumentID=9AKK108468A1415&LanguageVendor Advisory
https://search.abb.com/library/Download.aspx?DocumentID=9AKK108468A1415&LanguageVendor Advisory

FAQ

What is CVE-2023-0864?

CVE-2023-0864 is a vulnerability with a CVSS score of 7.1 (HIGH). Cleartext Transmission of Sensitive Information vulnerability in ABB Terra AC wallbox (UL40/80A), ABB Terra AC wallbox (UL32A), ABB Terra AC wallbox (CE) (Terra AC MID), ABB Terra AC wallbox (CE) Terr...

How severe is CVE-2023-0864?

CVE-2023-0864 has been rated HIGH with a CVSS base score of 7.1/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2023-0864?

Check the references section above for vendor advisories and patch information. Affected products include: Abb Terra Ac Wallbox Ul40 Firmware, Abb Terra Ac Wallbox Ul40, Abb Terra Ac Wallbox 80A Firmware, Abb Terra Ac Wallbox 80A, Abb Terra Ac Wallbox Ul32A Firmware.