{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-30T08:33:02.258","vulnerabilities":[{"cve":{"id":"CVE-2020-11640","sourceIdentifier":"cybersecurity@ch.abb.com","published":"2024-07-23T18:15:05.083","lastModified":"2025-12-19T15:57:45.533","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"AdvaBuild uses a command queue to launch certain operations. An attacker who gains access to the\ncommand queue can use it to launch an attack by running any executable on the AdvaBuild node. The\nexecutables that can be run are not limited to AdvaBuild specific executables. \n\nImproper Privilege Management vulnerability in ABB Advant MOD 300 AdvaBuild.This issue affects Advant MOD 300 AdvaBuild: from 3.0 through 3.7 SP2."},{"lang":"es","value":"AdvaBuild utiliza una cola de comandos para iniciar determinadas operaciones. Un atacante que obtenga acceso a la cola de comandos puede usarla para lanzar un ataque ejecutando cualquier ejecutable en el nodo AdvaBuild. Los ejecutables que se pueden ejecutar no se limitan a ejecutables específicos de AdvaBuild. Vulnerabilidad de gestión de privilegios inadecuada en ABB Advant MOD 300 AdvaBuild. Este problema afecta a Advant MOD 300 AdvaBuild: desde 3.0 hasta 3.7 SP2."}],"metrics":{"cvssMetricV31":[{"source":"cybersecurity@ch.abb.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"cybersecurity@ch.abb.com","type":"Secondary","description":[{"lang":"en","value":"CWE-269"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:abb:advabuild:*:*:*:*:*:advant_mod_300:*:*","versionStartIncluding":"3.0","versionEndExcluding":"3.7","matchCriteriaId":"2B2DD8A5-17FB-4CCF-ABC0-2388B43D07F2"},{"vulnerable":true,"criteria":"cpe:2.3:a:abb:advabuild:3.7:-:*:*:*:advant_mod_300:*:*","matchCriteriaId":"88348546-89FF-4F82-8246-F9E08B585C78"},{"vulnerable":true,"criteria":"cpe:2.3:a:abb:advabuild:3.7:sp1:*:*:*:advant_mod_300:*:*","matchCriteriaId":"4E2D62C1-9F2D-42D5-997B-0880469C82E0"},{"vulnerable":true,"criteria":"cpe:2.3:a:abb:advabuild:3.7:sp2:*:*:*:advant_mod_300:*:*","matchCriteriaId":"9D462F34-AD38-4EA0-97CE-9FE7A558920F"}]}]}],"references":[{"url":"https://search.abb.com/library/Download.aspx?DocumentID=3BUA003421&LanguageCode=en&DocumentPartId=&Action=Launch&_ga=2.200044199.882581162.1721753430-284724496.1718609177","source":"cybersecurity@ch.abb.com","tags":["Vendor Advisory"]},{"url":"https://search.abb.com/library/Download.aspx?DocumentID=3BUA003421&LanguageCode=en&DocumentPartId=&Action=Launch&_ga=2.200044199.882581162.1721753430-284724496.1718609177","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}}]}