Nanocore RAT Malware Analysis
June 2, 2020Rewterz Threat Advisory – ICS: ABB Central Licensing System Multiple Vulnerabilities
June 3, 2020Nanocore RAT Malware Analysis
June 2, 2020Rewterz Threat Advisory – ICS: ABB Central Licensing System Multiple Vulnerabilities
June 3, 2020Severity
Medium
Analysis Summary
CVE-2020-8472
Weak access control lists for system folders could allow low privileged users to modify system and application files.
CVE-2020-8473
An attacker who successfully exploits the weak file permissions in one of the ABB System 800xA functions could corrupt applications by escalating privileges, executing arbitrary code, and affecting various engineering functions.
Impact
- Privilege escalation
- Cause system functions to stop
- Corrupt user applications.
Affected Vendors
ABB
Affected Products
System 800xA
Remediation
Refer to ICS advisory for the complete list of affected products and upgraded patches.