Fortiguard

ABB.Flow.Computer.TotalFlow.Path.Traversal

Description

This indicates an attack attempt to exploit a Path Traversal vulnerability in ABB Flow Computer and Remote Controller products.
The vulnerability is due to improper restriction of a pathname. A remote attacker may be able to exploit this to execute arbitrary commands within the context of the vulnerable system.

Affected Products

RMC-100 (Standard)
RMC-100-LITE
XIO
XFC G5
XRC G5
uFLO G5
UDC

Impact

System Compromise: Remote attackers can execute arbitrary script code within the context of the affected system.

Recommended Actions

Apply the latest update from the vendor.
https://search.abb.com/library/Download.aspx?DocumentID=9AKK108467A0927

CVE References

CVE-2022-0902

ID	52307
Created	Nov 15, 2022
Updated	Nov 21, 2022
Outbreak Alert	TotalFlow Path Traversal 2022 Annual Report
Severity
Coverage	IPS (Regular DB) IPS (Extended DB)
Default Action	drop
Active
Affected OS	Windows, Linux
Affected App	SCADA

Network

Files and Endpoint

Application

Additional SOC Services

Legend

Threat Encyclopedia

ABB.Flow.Computer.TotalFlow.Path.Traversal

Description

Affected Products

Impact

Recommended Actions

CVE References

Telemetry

Active/Available
InActive/Not Available

News / Research

Network

Files and Endpoint

Application

Additional SOC Services

FortiGate

FortiDeceptor

FortiClient

FortiMail

FortiEDR

FortiADC

FortiAnalyzer

FortiCWP

FortiWeb

FortiNDR

FortiSandBox

FortiTester

Threat Lookup

PSIRT

Resources

Legend

Threat Encyclopedia

ABB.Flow.Computer.TotalFlow.Path.Traversal

Description

Affected Products

Impact

Recommended Actions

CVE References

Telemetry