CVE-2022-28702: 
ABB e-Design vulnerability analysis and mitigation

CVE-2022-28702 is a vulnerability affecting ABB e-Design software, discovered and reported by Michael DePlante of Trend Micro's Zero Day Initiative. The vulnerability is classified as an Incorrect Default Permissions issue that affects all versions of e-Design prior to 1.12.2.0006. The vulnerability was publicly disclosed on June 29, 2022, with a CVSS v3 base score of 6.1 (CISA Advisory, ZDI Advisory).

The vulnerability is characterized by incorrect default permissions (CWE-276) within the installer component of ABB e-Design. The specific flaw allows an attacker to create a symbolic link that can be abused to create files with elevated permissions. The vulnerability has been assigned a CVSS vector string of AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H, indicating local access requirements with low attack complexity (CISA Advisory).

Successful exploitation of this vulnerability can lead to a denial-of-service condition on the target machine after a reboot. The vulnerability affects systems where the ABB e-Design software is installed, potentially impacting industrial control systems in the energy sector worldwide (CISA Advisory).

ABB has released version 1.12.2.0006 to address this vulnerability. The recommended mitigations include updating to version 1.12.2.0006 or later, preventing other users from logging in until the update is applied, and ensuring the machine is not left unlocked when not in use (CISA Advisory).