CVE-2024-13930 MEDIUM

CVE-2024-13930: Authenticated Unchecked Loop Condition

Vendor Abb
Product ASPECT-Enterprise
Weakness CWE-606
Published May 22, 2025
Last update May 22, 2025

CVSS base score

5.9/10
Attack vector Network
Attack complexity Low
Privileges required High
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/S:N/AU:N/R:U/V:C

What the vulnerability does

01Description

An Unchecked Loop Condition in ASPECT provides an attacker the ability to maliciously consume system resources if session administrator credentials become compromised This issue affects ASPECT-Enterprise: through 3.08.03; NEXUS Series: through 3.08.03; MATRIX Series: through 3.08.03.

Key dates

02Disclosure timeline

May 22, 2025 CVE published
May 22, 2025 Record updated