{ "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", "CVE_data_meta": { "ID": "CVE-2023-0863", "ASSIGNER": "cybersecurity@ch.abb.com", "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", "value": "Improper Authentication vulnerability in ABB Terra AC wallbox (UL40/80A), ABB Terra AC wallbox (UL32A), ABB Terra AC wallbox (CE) (Terra AC MID), ABB Terra AC wallbox (CE) Terra AC Juno CE, ABB Terra AC wallbox (CE) Terra AC PTB, ABB Terra AC wallbox (CE) Symbiosis, ABB Terra AC wallbox (JP).This issue affects Terra AC wallbox (UL40/80A): from 1.0;0 through 1.5.5; Terra AC wallbox (UL32A) : from 1.0;0 through 1.6.5; Terra AC wallbox (CE) (Terra AC MID): from 1.0;0 through 1.6.5; Terra AC wallbox (CE) Terra AC Juno CE: from 1.0;0 through 1.6.5; Terra AC wallbox (CE) Terra AC PTB : from 1.0;0 through 1.5.25; Terra AC wallbox (CE) Symbiosis: from 1.0;0 through 1.2.7; Terra AC wallbox (JP): from 1.0;0 through 1.6.5.\n\n" } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "CWE-287 Improper Authentication", "cweId": "CWE-287" } ] } ] }, "affects": { "vendor": { "vendor_data": [ { "vendor_name": "ABB", "product": { "product_data": [ { "product_name": "Terra AC wallbox (UL40/80A)", "version": { "version_data": [ { "version_affected": "<=", "version_name": "1.0;0", "version_value": "1.5.5" } ] } }, { "product_name": "Terra AC wallbox (UL32A) ", "version": { "version_data": [ { "version_affected": "<=", "version_name": "1.0;0", "version_value": "1.6.5" } ] } }, { "product_name": "Terra AC wallbox (CE) (Terra AC MID)", "version": { "version_data": [ { "version_affected": "<=", "version_name": "1.0;0", "version_value": "1.6.5" } ] } }, { "product_name": "Terra AC wallbox (CE) Terra AC Juno CE", "version": { "version_data": [ { "version_affected": "<=", "version_name": "1.0;0", "version_value": "1.6.5" } ] } }, { "product_name": "Terra AC wallbox (CE) Terra AC PTB ", "version": { "version_data": [ { "version_affected": "<=", "version_name": "1.0;0", "version_value": "1.5.25" } ] } }, { "product_name": "Terra AC wallbox (CE) Symbiosis", "version": { "version_data": [ { "version_affected": "<=", "version_name": "1.0;0", "version_value": "1.2.7" } ] } }, { "product_name": "Terra AC wallbox (JP)", "version": { "version_data": [ { "version_affected": "<=", "version_name": "1.0;0", "version_value": "1.6.5" } ] } } ] } } ] } }, "references": { "reference_data": [ { "url": "https://search.abb.com/library/Download.aspx?DocumentID=9AKK108468A1415&LanguageCode=en&DocumentPartId=&Action=Launch", "refsource": "MISC", "name": "https://search.abb.com/library/Download.aspx?DocumentID=9AKK108468A1415&LanguageCode=en&DocumentPartId=&Action=Launch" } ] }, "generator": { "engine": "Vulnogram 0.1.0-dev" }, "source": { "discovery": "UNKNOWN" }, "credits": [ { "lang": "en", "value": "ABB acknowledges and thanks Andi Leach and Puck Meerburg who responsibly disclosed these vulnerabilities and provided valuable input on product improvements. ABB also acknowledges and thanks Lionel R. Saposnik from Saiflow who also responsibly disclosed these vulnerabilities and provided valuable input on product improvements." } ], "impact": { "cvss": [ { "attackComplexity": "LOW", "attackVector": "ADJACENT_NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1" } ] } }