Vulnerability Details : CVE-2021-22285
Improper Handling of Exceptional Conditions, Improper Check for Unusual or Exceptional Conditions vulnerability in the ABB SPIET800 and PNI800 module that allows an attacker to cause the denial of service or make the module unresponsive.
Vulnerability category: Denial of service
Products affected by CVE-2021-22285
- cpe:2.3:o:abb:pni800_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:abb:spiet800_firmware:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2021-22285
0.10%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 43 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2021-22285
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
5.0
|
MEDIUM | AV:N/AC:L/Au:N/C:N/I:N/A:P |
10.0
|
2.9
|
NIST | |
7.5
|
HIGH | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
3.9
|
3.6
|
Asea Brown Boveri Ltd. (ABB) | |
7.5
|
HIGH | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
3.9
|
3.6
|
NIST |
CWE ids for CVE-2021-22285
-
The product does not check or incorrectly checks for unusual or exceptional conditions that are not expected to occur frequently during day to day operation of the product.Assigned by:
- cybersecurity@ch.abb.com (Secondary)
- nvd@nist.gov (Primary)
-
The product does not handle or incorrectly handles an exceptional condition.Assigned by:
- cybersecurity@ch.abb.com (Secondary)
- nvd@nist.gov (Primary)
References for CVE-2021-22285
Jump to