Diffie-Hellman groups with insufficient strength are used in the SSL/TLS stack of B&R Automation Runtime versions before 6.0.2, allowing a network attacker to decrypt the SSL/TLS communication.
History

Mon, 12 Aug 2024 15:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Sat, 10 Aug 2024 04:00:00 +0000

Type Values Removed Values Added
Description Diffie-Hellman groups with insufficient strength are used in the SSL/TLS stack of B&R Automation Runtime versions before 6.0.2, allowing a network attacker to decrypt the SSL/TLS communication.
Title Diffie-Hellman groups with insufficient strength used in SSL/TLS stack of B&R Automation Runtime
Weaknesses CWE-326
References
Metrics cvssV4_0

{'score': 8.3, 'vector': 'CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N'}


cve-icon MITRE

Status: PUBLISHED

Assigner: ABB

Published: 2024-08-10T03:50:02.159Z

Updated: 2024-08-12T14:32:22.309Z

Reserved: 2024-06-10T16:11:48.689Z

Link: CVE-2024-5800

cve-icon Vulnrichment

Updated: 2024-08-12T14:32:15.802Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-08-12T13:38:38.110

Modified: 2024-08-12T13:41:36.517

Link: CVE-2024-5800

cve-icon Redhat

No data.