CVE-2022-26080

Published Mar 16, 2023

Last updated a year ago

CVSS medium 4.3

Overview

Description: Use of Insufficiently Random Values vulnerability in ABB Pulsar Plus System Controller NE843_S, ABB Infinity DC Power Plant.This issue affects Pulsar Plus System Controller NE843_S : comcode 150042936; Infinity DC Power Plant: H5692448 G104 G842 G224L G630-4 G451C(2) G461(2) – comcode 150047415.
Source: cybersecurity@ch.abb.com
NVD status: Modified

Risk scores

CVSS 3.1

Type: Primary
Base score: 4.3
Impact score: 1.4
Exploitability score: 2.8
Vector string: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Severity: MEDIUM

Weaknesses

nvd@nist.gov: CWE-330
cybersecurity@ch.abb.com: CWE-330

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:abb:h5692448_g104:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "5EF5497C-0510-414A-B96B-24906B3F35AA"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:abb:h5692448_g104_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F0F74600-CFD5-4DBC-A29A-EE5A6B002517"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:abb:h5692448_g842:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "560166BE-B924-4232-B955-2CE861C4270D"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:abb:h5692448_g842_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D31272C5-13D7-43B5-AF45-4FE6307E234E"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:abb:h5692448_g224l:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "3C5529A7-CA5E-4F4F-A623-F2131C09C8C1"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:abb:h5692448_g224l_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "78F66A6E-B51B-4D10-AEF9-65A80DAA1093"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:abb:h5692448_g630-4:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "E743E2A0-0762-4BB7-92B5-2C3A552B4886"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:abb:h5692448_g630-4_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0AE1CD2D-8EA5-4BF7-AA2A-1668ABFF8BC7"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:abb:h5692448_g451c\\(2\\):-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "14D47479-1D2C-4490-A3F1-53ADEB30D3A0"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:abb:h5692448_g451c\\(2\\)_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0244B1ED-0B75-442C-B556-FA732FAF6105"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:abb:h5692448_g461\\(2\\):-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "057DB785-DFF7-4182-A517-8F870522B674"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:abb:h5692448_g461\\(2\\)_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C77E5221-4728-49AA-8162-D4C633324B67"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:abb:ne843_s_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "10227ED3-F013-4607-BBCB-3DD8FCD64704"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:abb:ne843_s:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "19231E30-C773-4C77-B268-ED752A3EFF06"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Risk scores

CVSS 3.1

Weaknesses

Social media

Configurations

References