{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-17T09:48:54.081","vulnerabilities":[{"cve":{"id":"CVE-2020-24677","sourceIdentifier":"cybersecurity@ch.abb.com","published":"2020-12-22T22:15:13.413","lastModified":"2024-11-21T05:15:42.347","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Vulnerabilities in the S+ Operations and S+ Historian web applications can lead to a possible code execution and privilege escalation, redirect the user somewhere else or download unwanted data."},{"lang":"es","value":"Las vulnerabilidades en las aplicaciones web S+ Operations y S+ Historian, pueden conducir a una posible ejecución de código y escalada de privilegios, un redireccionamiento del usuario a otro lugar o una descarga de datos no deseados"}],"metrics":{"cvssMetricV31":[{"source":"cybersecurity@ch.abb.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:P/I:P/A:P","baseScore":6.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":8.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cybersecurity@ch.abb.com","type":"Secondary","description":[{"lang":"en","value":"CWE-754"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-754"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:abb:symphony_\\+_historian:3.0:*:*:*:*:*:*:*","matchCriteriaId":"DAAEE275-0C2C-4D15-B0CB-B51706015769"},{"vulnerable":true,"criteria":"cpe:2.3:a:abb:symphony_\\+_historian:3.1:*:*:*:*:*:*:*","matchCriteriaId":"8A89B5F4-5BE7-4B0E-9ADF-46630017221C"},{"vulnerable":true,"criteria":"cpe:2.3:a:abb:symphony_\\+_operations:1.1:*:*:*:*:*:*:*","matchCriteriaId":"21FB4D84-598C-486D-9A16-F24AEAA8B2A5"},{"vulnerable":true,"criteria":"cpe:2.3:a:abb:symphony_\\+_operations:2.0:*:*:*:*:*:*:*","matchCriteriaId":"96371CD8-6C8A-459E-9A7E-34694B9F648E"},{"vulnerable":true,"criteria":"cpe:2.3:a:abb:symphony_\\+_operations:2.1:sp1:*:*:*:*:*:*","matchCriteriaId":"5D3E3D88-6544-459D-A5F3-AFB682FF8462"},{"vulnerable":true,"criteria":"cpe:2.3:a:abb:symphony_\\+_operations:2.1:sp2:*:*:*:*:*:*","matchCriteriaId":"ED64EBDB-B30B-49ED-88C9-7FC2B092FEA3"},{"vulnerable":true,"criteria":"cpe:2.3:a:abb:symphony_\\+_operations:3.0:*:*:*:*:*:*:*","matchCriteriaId":"A6281EC9-5771-4B95-B18C-C11A0EABDA25"},{"vulnerable":true,"criteria":"cpe:2.3:a:abb:symphony_\\+_operations:3.1:*:*:*:*:*:*:*","matchCriteriaId":"3B553708-205B-4B87-BFE9-1570C1AAE06F"},{"vulnerable":true,"criteria":"cpe:2.3:a:abb:symphony_\\+_operations:3.2:*:*:*:*:*:*:*","matchCriteriaId":"C8D38257-9207-4AED-818F-EA6E09393491"},{"vulnerable":true,"criteria":"cpe:2.3:a:abb:symphony_\\+_operations:3.3:*:*:*:*:*:*:*","matchCriteriaId":"7EBFA7A6-0EF8-46FC-B92F-AF448531B997"}]}]}],"references":[{"url":"https://search.abb.com/library/Download.aspx?DocumentID=2PAA123980&LanguageCode=en&DocumentPartId=&Action=Launch","source":"cybersecurity@ch.abb.com","tags":["Mitigation","Vendor Advisory"]},{"url":"https://search.abb.com/library/Download.aspx?DocumentID=2PAA123982&LanguageCode=en&DocumentPartId=&Action=Launch","source":"cybersecurity@ch.abb.com","tags":["Mitigation","Vendor Advisory"]},{"url":"https://search.abb.com/library/Download.aspx?DocumentID=2PAA123980&LanguageCode=en&DocumentPartId=&Action=Launch","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mitigation","Vendor Advisory"]},{"url":"https://search.abb.com/library/Download.aspx?DocumentID=2PAA123982&LanguageCode=en&DocumentPartId=&Action=Launch","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mitigation","Vendor Advisory"]}]}}]}