CVE-2024-13945: Stored Absolute Path Traversal
8.4
CVSS
Description
Stored Absolute Path Traversal vulnerabilities in ASPECT could expose sensitive data
if administrator credentials become compromised.
This issue affects ASPECT-Enterprise: through 3.*; NEXUS Series: through 3.*; MATRIX Series: through 3.*.
Classification
CVE ID: CVE-2024-13945
CVSS Base Severity: HIGH
CVSS Base Score: 8.4
CVSS Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:L/VA:L/SC:H/SI:L/SA:L
Problem Types
CWE-36 Absolute Path TraversalAffected Products
Vendor: ABB
Product: ASPECT-Enterprise, NEXUS Series, MATRIX Series
Exploit Prediction Scoring System (EPSS)
EPSS Score: 0.06% (probability of being exploited)
EPSS Percentile: 17.27% (scored less or equal to compared to others)
EPSS Date: 2025-06-09 (when was this score calculated)
References
https://nvd.nist.gov/vuln/detail/CVE-2024-13945https://search.abb.com/library/Download.aspx?DocumentID=9AKK108471A0021&LanguageCode=en&DocumentPartId=pdf&Action=Launch