Primary

Context

ABB ASPECT, NEXUS, and MATRIX Series Device Commissioning Parameter Modification Vulnerability

Vulnerability

A vulnerability exists in ABB ASPECT-Enterprise, NEXUS Series, and MATRIX Series versions through 3.*, allowing device commissioning parameters to be altered by an external source if administrative credentials are compromised.

Impact

Exploitation of this vulnerability could lead to unauthorized modification of device commissioning parameters, potentially allowing for improper device configuration or behavior.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

0.6

exploitability

4.4

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

0.6

exploitability

4.4

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

ABB ASPECT, NEXUS, and MATRIX Series Device Commissioning Parameter Modification Vulnerability

Vulnerability

Impact

Affected Products

ABB ASPECT-Enterprise

ABB MATRIX

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating