Which versions of Abb are affected by CVE-2025-13777?

ABB AWIN Gateway devices (GW100 rev.2 and GW120) are vulnerable to an authentication bypass that allows attackers on adjacent networks to steal and replay credentials without user interaction,…

How to fix or mitigate CVE-2025-13777?

Within 24 hours: Identify all ABB AWIN Gateway devices in your environment and document network connectivity; isolate affected devices to trusted networks only and disable remote access where feasible. Within 7 days: Implement network segmentation to restrict access to GW100/GW120 devices from untrusted or adjacent networks using firewall rules; enable enhanced monitoring and logging for authentication attempts. Within 30 days: Contact ABB for patch availability and timeline; evaluate alternative solutions or device replacement; conduct a full audit of all access logs for signs of compromise or unauthorized authentication attempts.

Abb CVE-2025-13777

Q: What is the CVSS score of CVE-2025-13777?

CVE-2025-13777 has a CVSS 4.0 base score of 7.2 (High). CVSS vector: CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:L/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X. EPSS exploitation probability: 0.0%.

EUVD-2025-208631 HIGH

Authentication Bypass by Capture-replay (CWE-294)

2026-03-13 ABB

Authentication Bypass Abb

7.2

CVSS 4.0

CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:L/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Attack Vector

Adjacent

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Lifecycle Timeline

Re-analysis Queued

May 19, 2026 - 15:07 vuln.today

cvss_changed

CVSS changed

May 19, 2026 - 15:07 NVD

8.3 (HIGH) 7.2 (HIGH)

EUVD ID Assigned

Mar 13, 2026 - 16:57 euvd

EUVD-2025-208631

Analysis Generated

Mar 13, 2026 - 16:57 vuln.today

CVE Published

Mar 13, 2026 - 13:05 nvd

HIGH 8.3

DescriptionNVD

Authentication bypass by capture-replay vulnerability in ABB AWIN GW100 rev.2, ABB AWIN GW120.This issue affects AWIN GW100 rev.2: 2.0-0, 2.0-1; AWIN GW120: 1.2-0, 1.2-1.

AnalysisAI

CVE-2025-13777 is an authentication bypass vulnerability in ABB AWIN Gateway devices (GW100 rev.2 and GW120) that allows attackers on adjacent networks to capture and replay authentication credentials without requiring privileges or user interaction. With a CVSS score of 8.3 and no evidence of active exploitation (not in KEV), this vulnerability enables attackers to gain unauthorized access and potentially compromise system confidentiality, integrity, and availability.

Technical ContextAI

The vulnerability affects ABB AWIN industrial gateway devices - specifically AWIN GW100 rev.2 (versions 2.0-0, 2.0-1) and AWIN GW120 (versions 1.2-0, 1.2-1) as identified by CPE strings cpe:2.3:a:abb:awin_gw100_rev.2:*:*:*:*:*:*:*:* and cpe:2.3:a:abb:awin_gw120:*:*:*:*:*:*:*:*. The root cause is CWE-294 (Authentication Bypass by Capture-Replay), where the authentication mechanism fails to protect against replay attacks, allowing captured authentication tokens or credentials to be reused by attackers to gain unauthorized access.

RemediationAI

ABB has published an official security advisory available at https://search.abb.com/library/Download.aspx?DocumentID=4JNO000329&LanguageCode=en&DocumentPartId=&Action=Launch. Users should review this advisory for specific patch information and update procedures. As a temporary mitigation, organizations should ensure these gateways are isolated from untrusted adjacent networks and implement network segmentation to limit potential attacker access to the same network segment as these devices.

CVE-2025-13777 vulnerability details – vuln.today

Back

Abb CVE-2025-13777

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

Technical ContextAI

RemediationAI

Share

Abb CVE-2025-13777

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

Technical ContextAI

RemediationAI

Share

External POC / Exploit Code