CVE-2022-0947

high-risk
Published 2022-05-10

A vulnerability in ABB ARG600 Wireless Gateway series that could allow an attacker to exploit the vulnerability by remotely connecting to the serial port gateway, and/or protocol converter, depending on the configuration.

Do I need to act?

-
0.41% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
9
CVSS 9.0/10 Critical
NETWORK / LOW complexity

Affected Products (20)

Arg600A1220Na Firmware
Arg600A1230Na Firmware
Arg600A1240Na Firmware
Arg600A1260Na Firmware
Arg600A2622Na Firmware
Arg600A2625Na Firmware
Arp600A2200Na Firmware
Arp600A2220Na Firmware
Arp600A2250Na Firmware
Arp600A2260Na Firmware
Arp600A2651Na Firmware
Arp600A2560Na Firmware
Arr600A3201Na Firmware
Arr600A3202Na Firmware
Arr600A3221Na Firmware
Arr600A3222Na Firmware
Arr600A3251Na Firmware
Arr600A3252Na Firmware
Arr600A3261Na Firmware
Arr600A3262Na Firmware

Affected Vendors

Abb

References (2)

Mitigation https://search.abb.com/library/Download.aspx?DocumentID=2NGA001253&LanguageCode=...
Mitigation https://search.abb.com/library/Download.aspx?DocumentID=2NGA001253&LanguageCode=...
53
/ 100
high-risk
Severity 30/34 · Critical
Exploitability 2/34 · Minimal
Exposure 21/34 · High