ABB T-MAC Plus
Summary
ABB T-MAC Plus versions 4.0-24 are affected by multiple vulnerabilities including file disclosure, authorization bypass, cross-site scripting, and incorrect authorization. An update to version 4.0-25 is available to resolve these issues, and mitigations for IIS server misconfigurations are also recommended.
IFF Assessment
The article details multiple critical vulnerabilities in ABB T-MAC Plus that could lead to system compromise, posing a direct threat to defenders managing these systems.
Severity
The CVSS score of 9.9 indicates a critical severity, reflecting the potential for an attacker to gain unauthorized access and exfiltrate sensitive files, impacting confidentiality and integrity.
Defender Context
Defenders should prioritize patching or mitigating ABB T-MAC Plus systems as soon as possible due to the critical CVSS score and the variety of attack vectors described, including unauthorized file access and XSS. This incident highlights the ongoing need for vigilance in securing industrial control systems (ICS) and operational technology (OT) environments.