ABB IEC 61850 Communication Stack Denial-of-Service Vulnerability

Vulnerability

A denial-of-service vulnerability has been identified in the IEC 61850 communication stack of ABB's AC800M (System 800xA) and Symphony Plus products. This vulnerability allows an attacker with access to IEC 61850 networks to disrupt communication by sending specially crafted 61850 packets. The affected modules, PM 877, CI850, and CI868, can be forced into fault mode or made unavailable, causing a denial-of-service situation on the S+ Operations 61850 connectivity. However, the overall availability and functionality of the S+ Operations node remain unaffected. The vulnerability does not impact the System 800xA IEC61850 Connect.

Impact

Exploitation of this vulnerability leads to a denial-of-service condition on the 61850 communication function, causing unavailability of the S+ Operations 61850 connectivity while leaving the overall S+ Operations node functionality intact.

Added: Apr 13, 2026, 6:41 PM

Updated: Apr 13, 2026, 6:41 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

4.9

remediation

0.0

relevance

5.8

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

4.9

remediation

0.0

relevance

5.8

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

ABB IEC 61850 Communication Stack Denial-of-Service Vulnerability

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating