CVE-2024-48851 | THREATINT

Description

Improper Validation of Specified Type of Input vulnerability in ABB FLXEON.A remote code execution is possible due to an improper input validation. This issue affects FLXEON: through 9.3.5.

PUBLISHED Reserved 2024-10-08 | Published 2025-09-18 | Updated 2025-09-18 | Assigner ABB

HIGH: 7.5CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

HIGH: 7.2CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Problem types

CWE-1287 Improper Validation of Specified Type of Input

Product status

Default status

unaffected

Any version

affected

Credits

ABB likes to thank Gjoko Krstikj, Zero Science Lab, for reporting the vulnerabilities in responsible disclosure. finder

References

search.abb.com/...geCode=en&DocumentPartId=pdf&Action=Launch

cve.org (CVE-2024-48851)

nvd.nist.gov (CVE-2024-48851)

Download JSON