CVE-2024-10334 HIGH

CVE-2024-10334: Camera passwords stored in clear text

Vendor Abb
Product System 800xA
Weakness CWE-256
Published February 10, 2025
Last update February 12, 2025

CVSS base score

7.0/10
Attack vector Local
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:L/VA:H/SC:N/SI:N/SA:N/S:N/AU:N/R:U/V:D/RE:M

What the vulnerability does

01Description

A vulnerability exists in the VideONet product included in the listed System 800xA versions, where VideONet is used.  An attacker who successfully exploited the vulnerability could, in the worst case scenario, stop or manipulate the video feed. This issue affects System 800xA: 5.1.X; System 800xA: 6.0.3.X; System 800xA: 6.1.1.X; System 800xA: 6.2.X.

Key dates

02Disclosure timeline

February 10, 2025 CVE published
February 12, 2025 Record updated