We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2024-13967

ession-Management Failure



Description

This vulnerability allows the successful attacker to gain unauthorized access to a configuration web page delivered by the integrated web Server of EIBPORT. This issue affects EIBPORT V3 KNX: through 3.9.8; EIBPORT V3 KNX GSM: through 3.9.8.

Reserved 2025-06-04 | Published 2025-06-04 | Updated 2025-06-04 | Assigner ABB


CRITICAL: 9.4CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

HIGH: 8.8CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Problem types

CWE-384 Session Fixation

Product status

Default status
unaffected

Any version
affected

Default status
unaffected

Any version
affected

Credits

Psytester for describing the findings and helping to verify the resolving implementation finder

Frank van den Hurk for working with us to help protect customers finder

References

search.abb.com/...geCode=en&DocumentPartId=pdf&Action=Launch

cve.org (CVE-2024-13967)

nvd.nist.gov (CVE-2024-13967)

Download JSON

Share this page
https://cve.threatint.eu/CVE/CVE-2024-13967

Support options

Helpdesk Chat, Email, Knowledgebase
© Copyright 2025 THREATINT
Made in Cyprus with +
 System status
Find us on
Data Privacy
Terms of Use
Logo BSI Allianz für Cyber-Sicherheit
Error loading Crisp.chat. Please check your web content filter and browser plugins.