Full Report
[Control systems] ABB security advisory (AV26-055)
Analysis Summary
# Vulnerability: ABB 800xA Base CSLib Communication Denial of Service (DoS)
## CVE Details
- CVE ID: CVE-2024-3036
- CVSS Score: *(Score not explicitly provided in the summary text, typically requires consulting the linked advisory)*
- CWE: *(CWE not explicitly provided in the summary text)*
## Affected Systems
- Products: ABB 800xA Base
- Versions:
- Version 6.0.3-9 and prior
- Version 6.1.1-2 and prior
- Configurations: Vulnerability relates to the CSLib communication mechanism.
## Vulnerability Description
The advisory points to a Denial of Service (DoS) vulnerability specifically affecting the CSLib communication component within ABB 800xA Base installations. Successful exploitation could allow an unauthenticated or authenticated attacker (depending on specific conditions not detailed here) to cause a denial of service condition in the affected system.
## Exploitation
- Status: *(Information not explicitly detailed in the summary text)*
- Complexity: *(Information not explicitly detailed in the summary text)*
- Attack Vector: *(Likely Network-based due to communication protocol vulnerability)*
## Impact
- Confidentiality: *(Impact level not explicitly detailed)*
- Integrity: *(Impact level not explicitly detailed)*
- Availability: **High** (Indicated by the DoS nature of the flaw)
## Remediation
### Patches
- Users need to consult the referenced ABB advisory for specific patch versions covering versions 6.0.x and 6.1.x. (The advisory itself references the fix).
### Workarounds
- Users are encouraged to review the suggested mitigations provided in the official ABB security advisory.
## Detection
- Detection methods would focus on monitoring for anomalous or malformed traffic directed toward the CSLib communication interfaces on the ABB 800xA systems.
## References
- Vendor Advisory Link (CVE-2024-3036): hxxps://search[.]abb[.]com/library/Download[.]aspx?DocumentID=7PAA013309&LanguageCode=en&DocumentPartId=&Action=Launch
- ABB Cyber Security Alerts: hxxps://global[.]abb[.]com/group/en/technology/cyber-security/alerts-and-notifications