Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1336 CNY

100%

ASPECT-Enterprise — Vulnerabilities & Security Advisories 58

All 58 CVE vulnerabilities found in ASPECT-Enterprise, with AI-generated Chinese analysis, references, and POCs.

This page aggregates Common Weakness Enumeration (CWE) vulnerabilities associated with the ASPECT-Enterprise software product. It serves as a central reference for security researchers, product owners, and compliance officers to track known security flaws within this specific enterprise solution. The content on this page collects vulnerabilities reported across multiple advisory sources, spanning from initial disclosures through to resolved and patched statuses. While the specific timeline varies by individual vulnerability entry, the aggregation covers historical data up to the most recent updates, ensuring a comprehensive view of the security landscape for ASPECT-Enterprise over time. Users can access detailed records of how these weaknesses were identified and remediated by the vendor. Here, you can discover actionable insights by tracking ASPECT-Enterprise vendor advisories to stay informed about new releases or patches. The page also allows you to understand a specific weakness class by examining how it manifests within this product context, including affected components and attack vectors. Furthermore, you can look up the product's vulnerability history to assess long-term security trends and evaluate the effectiveness of the vendor's response mechanisms. This resource is designed to facilitate risk assessment and informed decision-making regarding the deployment and maintenance of ASPECT-Enterprise in production environments. By consolidating disparate security reports, it provides a unified perspective on the product's current security posture and historical exposure to common software weaknesses.

Vendor: ABB

CVE IDTitleCVSSSeverityPublished
CVE-2024-13945 Stored Absolute Path Traversal CWE-36 6.0 Medium2025-05-23
CVE-2024-51552 Weak Password Storage CWE-257 6.0 Medium2025-05-22
CVE-2024-13958 Stored Cross Site Scripting CWE-79 4.8 Medium2025-05-22
CVE-2024-13957 SSRF Server Side Request Forgery CWE-918 7.6 High2025-05-22
CVE-2024-13956 SSL Verification Bypass CWE-295 6.7 Medium2025-05-22
CVE-2024-13955 SQL Injection 2nd Order CWE-89 8.8 High2025-05-22
CVE-2024-13954 Serialization / Deserialization of configuration data CWE-922 6.5 Medium2025-05-22
CVE-2024-13953 Sensitive Information disclosed in log files CWE-359 4.9 Medium2025-05-22
CVE-2024-13952 Remote Code Execution CWE-94 8.4 High2025-05-22
CVE-2024-51553 Predictable Filename CWE-73 6.5 Medium2025-05-22
CVE-2024-13951 One way hash with predictable salt CWE-760 7.6 High2025-05-22
CVE-2024-13950 Log Injection CWE-79 6.8 Medium2025-05-22
CVE-2024-13949 Log Forging CWE-117 6.8 Medium2025-05-22
CVE-2024-48848 LARGECONTENT - device disk overutilization CWE-774 6.5 Medium2025-05-22
CVE-2024-13948 Insecure Permissions CWE-276 7.3 High2025-05-22
CVE-2024-13947 External System or Configuration Control CWE-863 6.0 Medium2025-05-22
CVE-2024-13946 Binary Planting / LoadLibrary DLL's not Signed CWE-427 6.8 Medium2025-05-22
CVE-2024-13931 Authenticated Relative Path Traversal CWE-606 7.2 High2025-05-22
CVE-2024-13930 Authenticated Unchecked Loop Condition CWE-606 4.9 Medium2025-05-22
CVE-2024-13929 Authenticated Servlet Command Injection CWE-94 7.2 High2025-05-22
CVE-2024-13928 Authenticated SQL Injection CWE-94 7.2 High2025-05-22
CVE-2025-30169 Admin Authorized File Upload and Execute PHP CWE-434 6.7 Medium2025-05-22
CVE-2025-30173 Admin Authorized File Upload CWE-434 6.7 Medium2025-05-22
CVE-2025-30172 Admin Authorized Remote Code Execution CWE-94 8.0 High2025-05-22
CVE-2025-30171 Admin Authorized System File Deletion CWE-863 9.0 Critical2025-05-22
CVE-2025-30170 Admin Authorized Exposure of file path, file size or file existence CWE-497 5.5 Medium2025-05-22
CVE-2025-2409 Admin Authorized System File corruption CWE-73 9.1 Critical2025-05-22
CVE-2025-2410 Admin Authorized Port (iptables) manipulation (open/close/disable ports) CWE-99 9.1 Critical2025-05-22
CVE-2024-9639 Authenticated Remote Code Execution CWE-94 8.0 High2025-05-22
CVE-2024-48850 Authenticated Absolute Path Traversal CWE-36 7.2 High2025-05-22

All 58 known CVE vulnerabilities affecting ASPECT-Enterprise with full Chinese analysis, references, and POCs where available.