CVE-2023-0863

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2023-0863
Improper Authentication vulnerability in ABB Terra AC wallbox (UL40/80A), ABB Terra AC wallbox (UL32A), ABB Terra AC wallbox (CE) (Terra AC MID), ABB Terra AC wallbox (CE) Terra AC Juno CE, ABB Terra AC wallbox (CE) Terra AC PTB, ABB Terra AC wallbox (CE) Symbiosis, ABB Terra AC wallbox (JP).This issue affects Terra AC wallbox (UL40/80A): from 1.0;0 through 1.5.5; Terra AC wallbox (UL32A) : from 1.0;0 through 1.6.5; Terra AC wallbox (CE) (Terra AC MID): from 1.0;0 through 1.6.5; Terra AC wallbox (CE) Terra AC Juno CE: from 1.0;0 through 1.6.5; Terra AC wallbox (CE) Terra AC PTB : from 1.0;0 through 1.5.25; Terra AC wallbox (CE) Symbiosis: from 1.0;0 through 1.2.7; Terra AC wallbox (JP): from 1.0;0 through 1.6.5.

8.8 /10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 2.8 / Impact : 5.9

Attack Vector ADJACENT_NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://search.abb.com/library/Download.aspx?DocumentID=9AKK108468A1415&LanguageCode=en&DocumentPartId=&Action=Launch Vendor Advisory
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:abb:terra_ac_wallbox_ul40_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:abb:terra_ac_wallbox_ul40:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:abb:terra_ac_wallbox_80a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:abb:terra_ac_wallbox_80a:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:abb:terra_ac_wallbox_ul32a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:abb:terra_ac_wallbox_ul32a:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:abb:terra_ac_wallbox_jp_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:abb:terra_ac_wallbox_jp:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:abb:terra_ac_wallbox_ce_mid_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:abb:terra_ac_wallbox_ce_mid:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND
cpe:2.3:o:abb:terra_ac_wallbox_ce_juno_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:abb:terra_ac_wallbox_ce_juno:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND
cpe:2.3:o:abb:terra_ac_wallbox_ce_ptb_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:abb:terra_ac_wallbox_ce_ptb:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND
cpe:2.3:o:abb:terra_ac_wallbox_ce_symbiosis_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:abb:terra_ac_wallbox_ce_symbiosis:-:*:*:*:*:*:*:*
History

No history.

Information

Published : 2023-05-17 08:15

Updated : 2023-05-26 12:54

NVD link : CVE-2023-0863

Mitre link : CVE-2023-0863

CVE.ORG link : CVE-2023-0863

JSON object : View

Products Affected

abb

  • terra_ac_wallbox_80a
  • terra_ac_wallbox_ul32a_firmware
  • terra_ac_wallbox_80a_firmware
  • terra_ac_wallbox_jp_firmware
  • terra_ac_wallbox_ce_ptb_firmware
  • terra_ac_wallbox_ce_mid_firmware
  • terra_ac_wallbox_ul32a
  • terra_ac_wallbox_ce_ptb
  • terra_ac_wallbox_ce_symbiosis_firmware
  • terra_ac_wallbox_ce_symbiosis
  • terra_ac_wallbox_ul40_firmware
  • terra_ac_wallbox_ce_mid
  • terra_ac_wallbox_ce_juno
  • terra_ac_wallbox_ul40
  • terra_ac_wallbox_jp
  • terra_ac_wallbox_ce_juno_firmware
CWE
CWE-287

Improper Authentication