CNNVD-202508-941 Information

CNNVD ID

CNNVD-202508-941

Related CVE

CVE-2025-53187

• CNNVD Published: 2025-08-11

Description (Chinese)

ABB ASPECT是瑞士ABB公司的一个可扩展建筑能源管理和控制解决方案。 ABB ASPECT 3.08.04-s01之前版本存在代码注入漏洞，该漏洞源于代码生成控制不当，可能导致代码注入。

Description (English)

ABB ASPECT is a scalable construction energy management and control solution for ABB Switzerland. The pre-ABB ASPECT 3.08.04-s01 version has a code-injecting loophole, which stems from inadequate code-generation controls that may lead to code-injection.

Hazard Level

Low

Vulnerability Type

代码注入

Affected Vendor

阿西亚布朗勃法瑞有限公司

Published

2025-08-11

Last Modified

2026-02-24

References

https://search.abb.com/library/Download.aspx?DocumentID=9AKK108471A4462&LanguageCode=en&DocumentPartId=pdf&Action=Launch https://access.redhat.com/security/cve/cve-2025-53187 https://nvd.nist.gov/vuln/detail/CVE-2025-53187

Patch

https://global.abb/group/en/technology/cyber-security