CVE-2024-11316

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2024-11316
Fileszie Check vulnerabilities allow a malicious user to bypass size limits or overload to the product.  Affected products: ABB ASPECT - Enterprise v3.08.02; NEXUS Series v3.08.02; MATRIX Series v3.08.02

7.5 /10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://search.abb.com/library/Download.aspx?DocumentID=9AKK108469A7497&LanguageCode=en&DocumentPartId=&Action=Launch Vendor Advisory
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:abb:aspect-ent-2_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:abb:aspect-ent-2:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:abb:aspect-ent-256_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:abb:aspect-ent-256:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:abb:aspect-ent-96_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:abb:aspect-ent-96:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:abb:nexus-2128_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:abb:nexus-2128:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:abb:nexus-2128-a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:abb:nexus-2128-a:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND
cpe:2.3:o:abb:nexus-2128-f_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:abb:nexus-2128-f:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND
cpe:2.3:o:abb:nexus-2128-g_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:abb:nexus-2128-g:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND
cpe:2.3:o:abb:nexus-264_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:abb:nexus-264:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND
cpe:2.3:o:abb:nexus-264-a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:abb:nexus-264-a:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND
cpe:2.3:o:abb:nexus-264-g_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:abb:nexus-264-g:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND
cpe:2.3:o:abb:nexus-3-2128_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:abb:nexus-3-2128:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND
cpe:2.3:o:abb:aspect-ent-12_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:abb:aspect-ent-12:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND
cpe:2.3:o:abb:nexus-264-f_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:abb:nexus-264-f:-:*:*:*:*:*:*:*

Configuration 14 (hide)

AND
cpe:2.3:o:abb:nexus-3-264_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:abb:nexus-3-264:-:*:*:*:*:*:*:*

Configuration 15 (hide)

AND
cpe:2.3:o:abb:matrix-11_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:abb:matrix-11:-:*:*:*:*:*:*:*

Configuration 16 (hide)

AND
cpe:2.3:o:abb:matrix-216_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:abb:matrix-216:-:*:*:*:*:*:*:*

Configuration 17 (hide)

AND
cpe:2.3:o:abb:matrix-232_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:abb:matrix-232:-:*:*:*:*:*:*:*

Configuration 18 (hide)

AND
cpe:2.3:o:abb:matrix-264_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:abb:matrix-264:-:*:*:*:*:*:*:*

Configuration 19 (hide)

AND
cpe:2.3:o:abb:matrix-296_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:abb:matrix-296:-:*:*:*:*:*:*:*
History

10 Apr 2025, 19:18

Type Values Removed Values Added
References () https://search.abb.com/library/Download.aspx?DocumentID=9AKK108469A7497&LanguageCode=en&DocumentPartId=&Action=Launch - () https://search.abb.com/library/Download.aspx?DocumentID=9AKK108469A7497&LanguageCode=en&DocumentPartId=&Action=Launch - Vendor Advisory
CPE cpe:2.3:h:abb:nexus-3-2128:-:*:*:*:*:*:*:*
cpe:2.3:o:abb:matrix-216_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:abb:aspect-ent-256_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:abb:nexus-264-a:-:*:*:*:*:*:*:*
cpe:2.3:h:abb:matrix-11:-:*:*:*:*:*:*:*
cpe:2.3:h:abb:nexus-264:-:*:*:*:*:*:*:*
cpe:2.3:o:abb:nexus-264-f_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:abb:aspect-ent-96:-:*:*:*:*:*:*:*
cpe:2.3:o:abb:matrix-232_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:abb:nexus-264_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:abb:aspect-ent-2_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:abb:nexus-2128-g_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:abb:aspect-ent-96_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:abb:nexus-264-g:-:*:*:*:*:*:*:*
cpe:2.3:o:abb:nexus-2128-a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:abb:nexus-2128:-:*:*:*:*:*:*:*
cpe:2.3:h:abb:aspect-ent-256:-:*:*:*:*:*:*:*
cpe:2.3:o:abb:matrix-11_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:abb:nexus-3-264:-:*:*:*:*:*:*:*
cpe:2.3:h:abb:aspect-ent-12:-:*:*:*:*:*:*:*
cpe:2.3:o:abb:nexus-2128-f_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:abb:matrix-232:-:*:*:*:*:*:*:*
cpe:2.3:o:abb:aspect-ent-12_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:abb:matrix-264_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:abb:nexus-264-f:-:*:*:*:*:*:*:*
cpe:2.3:o:abb:matrix-296_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:abb:nexus-3-2128_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:abb:matrix-264:-:*:*:*:*:*:*:*
cpe:2.3:h:abb:nexus-2128-a:-:*:*:*:*:*:*:*
cpe:2.3:h:abb:matrix-296:-:*:*:*:*:*:*:*
cpe:2.3:o:abb:nexus-3-264_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:abb:nexus-2128_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:abb:nexus-2128-f:-:*:*:*:*:*:*:*
cpe:2.3:h:abb:aspect-ent-2:-:*:*:*:*:*:*:*
cpe:2.3:h:abb:matrix-216:-:*:*:*:*:*:*:*
cpe:2.3:o:abb:nexus-264-g_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:abb:nexus-264-a_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:abb:nexus-2128-g:-:*:*:*:*:*:*:*
Summary
  • (es) Las vulnerabilidades de Fileszie Check permiten que un usuario malintencionado eluda los límites de tamaño o sobrecargue el producto. Productos afectados: ABB ASPECT - Enterprise v3.08.02; NEXUS Series v3.08.02; MATRIX Series v3.08.02
First Time Abb aspect-ent-12 Firmware
Abb matrix-11
Abb aspect-ent-256 Firmware
Abb nexus-264-g Firmware
Abb aspect-ent-2 Firmware
Abb nexus-264-g
Abb matrix-232 Firmware
Abb nexus-2128
Abb nexus-264-a
Abb aspect-ent-256
Abb nexus-3-2128 Firmware
Abb matrix-296 Firmware
Abb aspect-ent-2
Abb nexus-264
Abb nexus-2128-f Firmware
Abb matrix-232
Abb nexus-264-f Firmware
Abb aspect-ent-12
Abb nexus-264 Firmware
Abb nexus-3-264 Firmware
Abb matrix-11 Firmware
Abb matrix-216
Abb nexus-2128-g
Abb matrix-216 Firmware
Abb nexus-2128 Firmware
Abb matrix-296
Abb nexus-2128-g Firmware
Abb nexus-264-a Firmware
Abb aspect-ent-96
Abb nexus-2128-a
Abb matrix-264
Abb
Abb nexus-2128-f
Abb nexus-3-264
Abb nexus-2128-a Firmware
Abb nexus-264-f
Abb nexus-3-2128
Abb aspect-ent-96 Firmware
Abb matrix-264 Firmware

05 Dec 2024, 13:15

Type Values Removed Values Added
New CVE
Information

Published : 2024-12-05 13:15

Updated : 2025-04-10 19:18

NVD link : CVE-2024-11316

Mitre link : CVE-2024-11316

CVE.ORG link : CVE-2024-11316

JSON object : View

Products Affected

abb

  • matrix-232
  • matrix-216_firmware
  • nexus-264-g
  • nexus-2128-g_firmware
  • nexus-2128-f_firmware
  • nexus-3-264_firmware
  • matrix-264_firmware
  • aspect-ent-96
  • aspect-ent-256
  • matrix-296
  • nexus-264-a_firmware
  • aspect-ent-2
  • nexus-264-f
  • matrix-11
  • nexus-2128
  • matrix-296_firmware
  • aspect-ent-96_firmware
  • matrix-11_firmware
  • nexus-2128_firmware
  • nexus-3-2128
  • matrix-216
  • nexus-264-f_firmware
  • nexus-264-g_firmware
  • aspect-ent-12
  • nexus-264_firmware
  • nexus-3-2128_firmware
  • nexus-3-264
  • nexus-264
  • nexus-2128-a
  • nexus-2128-g
  • matrix-232_firmware
  • aspect-ent-256_firmware
  • nexus-2128-f
  • nexus-264-a
  • matrix-264
  • aspect-ent-12_firmware
  • nexus-2128-a_firmware
  • aspect-ent-2_firmware
CWE
CWE-770

Allocation of Resources Without Limits or Throttling