CVE-2020-11639 (GCVE-0-2020-11639)
Vulnerability from cvelistv5
Published
2024-07-23 17:26
Modified
2024-08-04 11:35
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CWE
  • CWE-924 - Improper Enforcement of Message Integrity During Transmission in a Communication Channel
Summary
An attacker could exploit the vulnerability by injecting garbage data or specially crafted data. Depending on the data injected each process might be affected differently. The process could crash or cause communication issues on the affected node, effectively causing a denial-of-service attack. The attacker could tamper with the data transmitted, causing the product to store wrong information or act on wrong data or display wrong information. This issue affects Advant MOD 300 AdvaBuild: from 3.0 through 3.7 SP2. For an attack to be successful, the attacker must have local access to a node in the system and be able to start a specially crafted application that disrupts the communication. An attacker who successfully exploited the vulnerability would be able to manipulate the data in such way as allowing reads and writes to the controllers or cause Windows processes in 800xA for MOD 300 and AdvaBuild to crash.
References
Impacted products
Vendor Product Version
ABB Advant MOD 300 AdvaBuild Version: 3.0
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
  "containers": {
    "adp": [
      {
        "affected": [
          {
            "cpes": [
              "cpe:2.3:a:abb:advabuild:3.0:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "advabuild",
            "vendor": "abb",
            "versions": [
              {
                "lessThanOrEqual": "3.7_sp2",
                "status": "affected",
                "version": "3.0",
                "versionType": "custom"
              }
            ]
          }
        ],
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2020-11639",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-07-23T19:03:27.748360Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-07-23T19:10:57.887Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T11:35:13.593Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://search.abb.com/library/Download.aspx?DocumentID=3BUA003421\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch\u0026_ga=2.200044199.882581162.1721753430-284724496.1718609177"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Advant MOD 300 AdvaBuild",
          "vendor": "ABB",
          "versions": [
            {
              "lessThanOrEqual": "3.7 SP2",
              "status": "affected",
              "version": "3.0",
              "versionType": "update"
            }
          ]
        }
      ],
      "datePublic": "2024-07-22T17:20:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\n\nAn attacker could exploit the vulnerability by\ninjecting garbage data or specially crafted data. Depending on the data injected each process might be\naffected differently. The process could crash or cause communication issues on the affected node, effectively causing a denial-of-service attack. The attacker could tamper with the data transmitted, causing\nthe product to store wrong information or act on wrong data or display wrong information.\n\n\u003cbr\u003e\u003cp\u003eThis issue affects Advant MOD 300 AdvaBuild: from 3.0 through 3.7 SP2.\u003c/p\u003e\u003cp\u003e\u003cbr\u003e\n\nFor an attack to be successful, the attacker must have local access to a node in the system and be able to\nstart a specially crafted application that disrupts the communication.\nAn attacker who successfully exploited the vulnerability would be able to manipulate the data in such\nway as allowing reads and writes to the controllers or cause Windows processes in 800xA for MOD 300\nand AdvaBuild to crash.\n\n\n\u003cbr\u003e\u003c/p\u003e"
            }
          ],
          "value": "An attacker could exploit the vulnerability by\ninjecting garbage data or specially crafted data. Depending on the data injected each process might be\naffected differently. The process could crash or cause communication issues on the affected node, effectively causing a denial-of-service attack. The attacker could tamper with the data transmitted, causing\nthe product to store wrong information or act on wrong data or display wrong information.\n\n\nThis issue affects Advant MOD 300 AdvaBuild: from 3.0 through 3.7 SP2.\n\n\n\n\nFor an attack to be successful, the attacker must have local access to a node in the system and be able to\nstart a specially crafted application that disrupts the communication.\nAn attacker who successfully exploited the vulnerability would be able to manipulate the data in such\nway as allowing reads and writes to the controllers or cause Windows processes in 800xA for MOD 300\nand AdvaBuild to crash."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-924",
              "description": "CWE-924 Improper Enforcement of Message Integrity During Transmission in a Communication Channel",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-07-23T17:26:55.489Z",
        "orgId": "2b718523-d88f-4f37-9bbd-300c20644bf9",
        "shortName": "ABB"
      },
      "references": [
        {
          "url": "https://search.abb.com/library/Download.aspx?DocumentID=3BUA003421\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch\u0026_ga=2.200044199.882581162.1721753430-284724496.1718609177"
        }
      ],
      "solutions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\n\nABB recommends changing any user account passwords which are suspected to be known by an unauthorized person. Interactive logon (both local and remote) is recommended to be disabled for service\naccounts.\n\n\u003cbr\u003e\n\nPlease note that the vulnerability can only be exploited by authenticated users, so customers are recommended to ensure that only authorized persons have access to user accounts for the computers where\nAdvaBuild is used.\n\u003cbr\u003e\u003cbr\u003eAll the vulnerabilities have been corrected in AdvaBuild version 3.7 SP3 released in April 2021.\n\u003cbr\u003e\u003cbr\u003eABB recommends that customers apply the update at earliest convenience. Users who are unable to install the update should immediately look to implement the \u201cMitigating factors\u201d listed below as this will\nrestrict or prevent an attacker\u2019s ability to compromise the system.\n\n\u003cbr\u003e"
            }
          ],
          "value": "ABB recommends changing any user account passwords which are suspected to be known by an unauthorized person. Interactive logon (both local and remote) is recommended to be disabled for service\naccounts.\n\n\n\n\nPlease note that the vulnerability can only be exploited by authenticated users, so customers are recommended to ensure that only authorized persons have access to user accounts for the computers where\nAdvaBuild is used.\n\n\nAll the vulnerabilities have been corrected in AdvaBuild version 3.7 SP3 released in April 2021.\n\n\nABB recommends that customers apply the update at earliest convenience. Users who are unable to install the update should immediately look to implement the \u201cMitigating factors\u201d listed below as this will\nrestrict or prevent an attacker\u2019s ability to compromise the system."
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "title": "Insufficient access control on Inter process communication,",
      "x_generator": {
        "engine": "Vulnogram 0.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "2b718523-d88f-4f37-9bbd-300c20644bf9",
    "assignerShortName": "ABB",
    "cveId": "CVE-2020-11639",
    "datePublished": "2024-07-23T17:26:55.489Z",
    "dateReserved": "2020-04-08T00:00:00.000Z",
    "dateUpdated": "2024-08-04T11:35:13.593Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "nvd": "{\"cve\":{\"id\":\"CVE-2020-11639\",\"sourceIdentifier\":\"cybersecurity@ch.abb.com\",\"published\":\"2024-07-23T18:15:04.820\",\"lastModified\":\"2024-11-21T04:58:18.137\",\"vulnStatus\":\"Awaiting Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"An attacker could exploit the vulnerability by\\ninjecting garbage data or specially crafted data. Depending on the data injected each process might be\\naffected differently. The process could crash or cause communication issues on the affected node, effectively causing a denial-of-service attack. The attacker could tamper with the data transmitted, causing\\nthe product to store wrong information or act on wrong data or display wrong information.\\n\\n\\nThis issue affects Advant MOD 300 AdvaBuild: from 3.0 through 3.7 SP2.\\n\\n\\n\\n\\nFor an attack to be successful, the attacker must have local access to a node in the system and be able to\\nstart a specially crafted application that disrupts the communication.\\nAn attacker who successfully exploited the vulnerability would be able to manipulate the data in such\\nway as allowing reads and writes to the controllers or cause Windows processes in 800xA for MOD 300\\nand AdvaBuild to crash.\"},{\"lang\":\"es\",\"value\":\"Un atacante podr\u00eda aprovechar la vulnerabilidad inyectando datos basura o datos especialmente manipulados. Dependiendo de los datos inyectados, cada proceso puede verse afectado de manera diferente. El proceso podr\u00eda fallar o causar problemas de comunicaci\u00f3n en el nodo afectado, provocando efectivamente un ataque de denegaci\u00f3n de servicio. El atacante podr\u00eda alterar los datos transmitidos, provocando que el producto almacene informaci\u00f3n incorrecta o act\u00fae sobre datos incorrectos o muestre informaci\u00f3n incorrecta. Este problema afecta a Advant MOD 300 AdvaBuild: desde 3.0 hasta 3.7 SP2. Para que un ataque tenga \u00e9xito, el atacante debe tener acceso local a un nodo del sistema y poder iniciar una aplicaci\u00f3n especialmente dise\u00f1ada que interrumpa la comunicaci\u00f3n. Un atacante que explotara con \u00e9xito la vulnerabilidad podr\u00eda manipular los datos de tal manera que permitiera lecturas y escrituras en los controladores o provocar que los procesos de Windows en 800xA para MOD 300 y AdvaBuild fallaran.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"cybersecurity@ch.abb.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":7.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":5.9}]},\"weaknesses\":[{\"source\":\"cybersecurity@ch.abb.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-924\"}]}],\"references\":[{\"url\":\"https://search.abb.com/library/Download.aspx?DocumentID=3BUA003421\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch\u0026_ga=2.200044199.882581162.1721753430-284724496.1718609177\",\"source\":\"cybersecurity@ch.abb.com\"},{\"url\":\"https://search.abb.com/library/Download.aspx?DocumentID=3BUA003421\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch\u0026_ga=2.200044199.882581162.1721753430-284724496.1718609177\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://search.abb.com/library/Download.aspx?DocumentID=3BUA003421\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch\u0026_ga=2.200044199.882581162.1721753430-284724496.1718609177\", \"tags\": [\"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-04T11:35:13.593Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2020-11639\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-07-23T19:03:27.748360Z\"}}}], \"affected\": [{\"cpes\": [\"cpe:2.3:a:abb:advabuild:3.0:*:*:*:*:*:*:*\"], \"vendor\": \"abb\", \"product\": \"advabuild\", \"versions\": [{\"status\": \"affected\", \"version\": \"3.0\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"3.7_sp2\"}], \"defaultStatus\": \"unknown\"}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-07-23T19:10:51.778Z\"}}], \"cna\": {\"title\": \"Insufficient access control on Inter process communication,\", \"source\": {\"discovery\": \"UNKNOWN\"}, \"metrics\": [{\"format\": \"CVSS\", \"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 7.8, \"attackVector\": \"LOCAL\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"LOW\", \"confidentialityImpact\": \"HIGH\"}, \"scenarios\": [{\"lang\": \"en\", \"value\": \"GENERAL\"}]}], \"affected\": [{\"vendor\": \"ABB\", \"product\": \"Advant MOD 300 AdvaBuild\", \"versions\": [{\"status\": \"affected\", \"version\": \"3.0\", \"versionType\": \"update\", \"lessThanOrEqual\": \"3.7 SP2\"}], \"defaultStatus\": \"unaffected\"}], \"solutions\": [{\"lang\": \"en\", \"value\": \"ABB recommends changing any user account passwords which are suspected to be known by an unauthorized person. Interactive logon (both local and remote) is recommended to be disabled for service\\naccounts.\\n\\n\\n\\n\\nPlease note that the vulnerability can only be exploited by authenticated users, so customers are recommended to ensure that only authorized persons have access to user accounts for the computers where\\nAdvaBuild is used.\\n\\n\\nAll the vulnerabilities have been corrected in AdvaBuild version 3.7 SP3 released in April 2021.\\n\\n\\nABB recommends that customers apply the update at earliest convenience. Users who are unable to install the update should immediately look to implement the \\u201cMitigating factors\\u201d listed below as this will\\nrestrict or prevent an attacker\\u2019s ability to compromise the system.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"\\n\\nABB recommends changing any user account passwords which are suspected to be known by an unauthorized person. Interactive logon (both local and remote) is recommended to be disabled for service\\naccounts.\\n\\n\u003cbr\u003e\\n\\nPlease note that the vulnerability can only be exploited by authenticated users, so customers are recommended to ensure that only authorized persons have access to user accounts for the computers where\\nAdvaBuild is used.\\n\u003cbr\u003e\u003cbr\u003eAll the vulnerabilities have been corrected in AdvaBuild version 3.7 SP3 released in April 2021.\\n\u003cbr\u003e\u003cbr\u003eABB recommends that customers apply the update at earliest convenience. Users who are unable to install the update should immediately look to implement the \\u201cMitigating factors\\u201d listed below as this will\\nrestrict or prevent an attacker\\u2019s ability to compromise the system.\\n\\n\u003cbr\u003e\", \"base64\": false}]}], \"datePublic\": \"2024-07-22T17:20:00.000Z\", \"references\": [{\"url\": \"https://search.abb.com/library/Download.aspx?DocumentID=3BUA003421\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch\u0026_ga=2.200044199.882581162.1721753430-284724496.1718609177\"}], \"x_generator\": {\"engine\": \"Vulnogram 0.2.0\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"An attacker could exploit the vulnerability by\\ninjecting garbage data or specially crafted data. Depending on the data injected each process might be\\naffected differently. The process could crash or cause communication issues on the affected node, effectively causing a denial-of-service attack. The attacker could tamper with the data transmitted, causing\\nthe product to store wrong information or act on wrong data or display wrong information.\\n\\n\\nThis issue affects Advant MOD 300 AdvaBuild: from 3.0 through 3.7 SP2.\\n\\n\\n\\n\\nFor an attack to be successful, the attacker must have local access to a node in the system and be able to\\nstart a specially crafted application that disrupts the communication.\\nAn attacker who successfully exploited the vulnerability would be able to manipulate the data in such\\nway as allowing reads and writes to the controllers or cause Windows processes in 800xA for MOD 300\\nand AdvaBuild to crash.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"\\n\\nAn attacker could exploit the vulnerability by\\ninjecting garbage data or specially crafted data. Depending on the data injected each process might be\\naffected differently. The process could crash or cause communication issues on the affected node, effectively causing a denial-of-service attack. The attacker could tamper with the data transmitted, causing\\nthe product to store wrong information or act on wrong data or display wrong information.\\n\\n\u003cbr\u003e\u003cp\u003eThis issue affects Advant MOD 300 AdvaBuild: from 3.0 through 3.7 SP2.\u003c/p\u003e\u003cp\u003e\u003cbr\u003e\\n\\nFor an attack to be successful, the attacker must have local access to a node in the system and be able to\\nstart a specially crafted application that disrupts the communication.\\nAn attacker who successfully exploited the vulnerability would be able to manipulate the data in such\\nway as allowing reads and writes to the controllers or cause Windows processes in 800xA for MOD 300\\nand AdvaBuild to crash.\\n\\n\\n\u003cbr\u003e\u003c/p\u003e\", \"base64\": false}]}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-924\", \"description\": \"CWE-924 Improper Enforcement of Message Integrity During Transmission in a Communication Channel\"}]}], \"providerMetadata\": {\"orgId\": \"2b718523-d88f-4f37-9bbd-300c20644bf9\", \"shortName\": \"ABB\", \"dateUpdated\": \"2024-07-23T17:26:55.489Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2020-11639\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2024-08-04T11:35:13.593Z\", \"dateReserved\": \"2020-04-08T00:00:00.000Z\", \"assignerOrgId\": \"2b718523-d88f-4f37-9bbd-300c20644bf9\", \"datePublished\": \"2024-07-23T17:26:55.489Z\", \"assignerShortName\": \"ABB\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
  • Confirmed: The vulnerability is confirmed from an analyst perspective.
  • Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
  • Patched: This vulnerability was successfully patched by the user reporting the sighting.
  • Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
  • Not confirmed: The user expresses doubt about the veracity of the vulnerability.
  • Not patched: This vulnerability was not successfully patched by the user reporting the sighting.