Skip to main content

ABB Freelance EUVDEUVD-2025-210109

| CVE-2025-7064 MEDIUM
Authentication Bypass by Primary Weakness (CWE-305)
2026-06-11 ABB GHSA-385f-mwvx-qwq5
5.6
CVSS 4.0 · Vendor: ABB
Share

Severity by source

Vendor (ABB) PRIMARY
5.6 MEDIUM
CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:L/SC:L/SI:H/SA:L/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:N/R:U/V:D/RE:L/U:Green
vuln.today AI
6.6 MEDIUM

Local access with low-privilege account required to trigger the bypass; high integrity impact reflects DCS configuration write access; confidentiality and availability impacts are limited and secondary.

3.1 AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L
4.0 AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:H/VA:L/SC:N/SI:N/SA:N

Primary rating from Vendor (ABB).

CVSS VectorVendor: ABB

CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:L/SC:L/SI:H/SA:L/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:N/R:U/V:D/RE:L/U:Green
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
X

Lifecycle Timeline

2
CVSS changed
Jun 11, 2026 - 10:22 NVD
6.6 (MEDIUM) 5.6 (MEDIUM)
Analysis Generated
Jun 11, 2026 - 10:16 vuln.today

DescriptionCVE.org

Authentication bypass by primary weakness vulnerability in ABB Freelance.

This issue affects Freelance: through 2013, 2013 SP1, 2016, 2016 SP1, 2019, 2019 SP1, 2019 SP1 FP1, 2024.

AnalysisAI

Authentication bypass via primary weakness (CWE-305) in ABB Freelance DCS affects every major release line from 2013 through 2024, allowing a locally authenticated low-privilege user to circumvent the product's authentication mechanism and gain elevated control over the system. The CVSS vector (AV:L/PR:L/I:H) confirms the attacker must already hold a foothold on the host but can then achieve high integrity impact - particularly serious in an industrial control system context where manipulating controller configurations can affect physical processes. No public exploit code and no CISA KEV listing have been identified at time of analysis, though the wide version span and OT deployment context elevate remediation urgency.

Technical ContextAI

ABB Freelance is a Distributed Control System (DCS) platform used in industrial process automation environments. The affected CPE (cpe:2.3:a:abb:freelance:*:*:*:*:*:*:*:*) spans all tracked versions through the 2024 release, indicating a pervasive architectural flaw rather than an isolated regression. CWE-305 (Authentication Bypass by Primary Weakness) describes a condition where the primary authentication mechanism itself is flawed - distinct from secondary control bypasses - meaning the intended authentication logic can be circumvented directly rather than by sidestepping a peripheral check. In an ICS/DCS context, authentication gates protect access to engineering workstations, controller configurations, function block programming, and runtime parameter adjustments; a bypass here enables actions that operators at a low-privilege tier should not be able to perform.

RemediationAI

Consult ABB's official advisory (Document ID 7PAA020361, https://search.abb.com/library/Download.aspx?DocumentID=7PAA020361&LanguageCode=en&DocumentPartId=&Action=Launch) for vendor-released patches or hotfixes - exact patched version numbers are not available in the current intelligence data and should not be inferred. While awaiting patching, restrict local access to Freelance engineering workstations to only explicitly authorized personnel by enforcing OS-level account controls and removing or disabling low-privilege accounts that do not require DCS access. Implement network segmentation to reduce the number of systems from which an attacker could pivot to a Freelance workstation. Enable audit logging for DCS configuration changes to detect unauthorized modifications even if a bypass is exploited. Note that OS-level access controls are a compensating control, not a substitute for patching, since the bypass exists within the Freelance application authentication layer itself.

More in Abb

View all
CVE-2012-0245 CRITICAL
10.0 Mar 09

Multiple stack-based buffer overflows in RobNetScanHost.exe in ABB Robot Communications Runtime before 5.14.02, as used

CVE-2024-6298 CRITICAL POC
9.4 Jul 05

Unauthorized file access in WEB Server in ABB ASPECT - Enterprise v3.08.01; NEXUS Series v3.08.01 ; MATRIX Series v3.08.

CVE-2024-6209 CRITICAL POC
9.4 Jul 05

Unauthorized file access in WEB Server in ABB ASPECT - Enterprise v3.08.01; NEXUS Series v3.08.01 ; MATRIX Series v3.08.

CVE-2017-17888 HIGH POC
8.8 Dec 27

cgi-bin/write.cgi in Anti-Web through 3.8.7, as used on NetBiter / HMS, Ouman EH-net, Alliance System WS100 --> AWU 500,

CVE-2019-7225 HIGH POC
8.8 Jun 27

The ABB HMI components implement hidden administrative accounts that are used during the provisioning phase of the HMI i

CVE-2019-7226 HIGH POC
8.8 Jun 27

The ABB IDAL HTTP server CGI interface contains a URL that allows an unauthenticated attacker to bypass authentication a

CVE-2019-7228 HIGH POC
8.8 Jun 27

The ABB IDAL HTTP server mishandles format strings in a username or cookie during the authentication process. Rated high

CVE-2019-7232 HIGH POC
8.8 Jun 24

The ABB IDAL HTTP server is vulnerable to a buffer overflow when a long Host header is sent in a web request. Rated high

CVE-2019-7230 HIGH POC
8.8 Jun 24

The ABB IDAL FTP server mishandles format strings in a username during the authentication process. Rated high severity (

CVE-2024-4007 HIGH POC
8.7 Jul 01

Default credential in install package in ABB ASPECT; NEXUS Series; MATRIX Series version 3.07 allows attacker to login t

CVE-2019-7229 HIGH POC
8.3 Jun 24

The ABB CP635 HMI uses two different transmission methods to upgrade its firmware and its software components: "Utilizat

CVE-2019-18997 HIGH POC
7.5 Dec 18

The HMISimulator component of ABB PB610 Panel Builder 600 uses the readFile/writeFile interface to manipulate the work f

Share

EUVD-2025-210109 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy