Description
Authentication bypass by primary weakness vulnerability in ABB Freelance. This issue affects Freelance: through 2013, 2013 SP1, 2016, 2016 SP1, 2019, 2019 SP1, 2019 SP1 FP1, 2024.
CVSS breakdown
CVSS 4.0
Attack Vector
Local
Attack Complexity
Low
Attack Requirements
Present
Privileges Required
Low
User Interaction
None
Confidentiality (Vulnerable System)
Low
Integrity (Vulnerable System)
High
Availability (Vulnerable System)
Low
Confidentiality (Subsequent System)
Low
Integrity (Subsequent System)
High
Availability (Subsequent System)
Low
E
Physical
AU
None
R
Unchanged
V
D
RE
Low
U
Green
CVSS 3.1
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
Low
Integrity
High
Availability
Low
Affected products
- ABB / Freelance0 – 2013
- ABB / Freelance2013 SP1 – 2013 SP1
- ABB / Freelance2016 – 2016
- ABB / Freelance2016 SP1 – 2016 SP1
- ABB / Freelance2019 – 2019
- ABB / Freelance2019 SP1 – 2019 SP1
- ABB / Freelance2019 SP1 FP1 – 2019 SP1 FP1
- ABB / Freelance2024 – 2024