6
CVEs
0
Critical
4
High
0
KEV
0
PoC
4
Unpatched C/H
0.0%
Patch Rate
0.0%
Avg EPSS
Severity Breakdown
CRITICAL
0
HIGH
4
MEDIUM
2
LOW
0
Monthly CVE Trend
Affected Products (30)
Matrix 216 Firmware
29
Nexus 2128 Firmware
29
Matrix 11 Firmware
29
Aspect Ent 96 Firmware
29
Matrix 296 Firmware
29
Nexus 3 2128 Firmware
29
Matrix 232 Firmware
29
Aspect Ent 256 Firmware
29
Aspect Ent 12 Firmware
29
Matrix 264 Firmware
29
Nexus 264 Firmware
29
Nexus 3 264 Firmware
29
Aspect Ent 2 Firmware
29
Nexus 264 G Firmware
28
Nexus 2128 F Firmware
28
Nexus 264 A Firmware
28
Nexus 264 F Firmware
28
Nexus 2128 A Firmware
28
Nexus 2128 G Firmware
28
Zenon
7
Pb610 Panel Builder 600 Firmware
6
800Xa System
5
Pcm600
4
Control Builder Safe
4
Pb610 Panel Builder 600
4
800Xa Base System
4
Compact Hmi
4
Esoms
3
Terra Ac Wallbox Ul32A Firmware
2
Terra Ac Wallbox Ce Ptb Firmware
2
Top Risky CVEs
| CVE | Summary | Severity | CVSS | EPSS | Priority | Signals |
|---|---|---|---|---|---|---|
| CVE-2025-14771 | Unauthorized file or directory access in ABB T-MAC Plus version 4.0-24 allows authenticated remote attackers to read, modify, or otherwise interact with resources that should not be externally reachable, with CVSS 4.0 scoring 7.3 due to high confidentiality and availability impact plus scope change to subsequent systems. The flaw is classified under CWE-552 (Files or Directories Accessible to External Parties) and was disclosed by ABB itself. There is no public exploit identified at time of analysis and the issue is not listed in CISA KEV. | HIGH | 7.3 | 0.0% | 37 |
No patch
|
| CVE-2025-14772 | Authorization bypass in ABB T-MAC Plus version 4.0-24 allows authenticated remote attackers to access or modify resources belonging to other users by manipulating user-controlled identifiers (IDOR). The flaw scores CVSS 7.3 with high impact to integrity and availability, and no public exploit identified at time of analysis. The vulnerability was reported by the vendor (ABB) itself, indicating coordinated disclosure rather than incident-driven discovery. | HIGH | 7.3 | 0.0% | 37 |
No patch
|
| CVE-2025-14773 | Stored/reflected cross-site scripting in ABB T-MAC Plus version 4.0-24 allows authenticated low-privileged attackers to inject malicious script content into the web management interface, which executes in the browsers of other users who interact with the affected pages. With a CVSS 4.0 base score of 7.2 and no public exploit identified at time of analysis, the flaw is notable because successful exploitation impacts both the vulnerable component and downstream subsequent systems with high integrity and availability consequences, reflecting the operational-technology context typical of ABB industrial products. | HIGH | 7.2 | 0.0% | 36 |
No patch
|
| CVE-2025-14774 | Authorization bypass in ABB T-MAC Plus version 4.0-24 allows adjacent-network attackers to perform unauthorized actions that compromise device integrity and availability without any credentials or user interaction. The flaw is an incorrect authorization weakness (CWE-863) carrying a CVSS 4.0 score of 7.2, and no public exploit identified at time of analysis. ABB itself disclosed the issue and published an advisory describing the affected firmware. | HIGH | 7.2 | 0.0% | 36 |
No patch
|
| CVE-2025-7064 | Authentication bypass via primary weakness (CWE-305) in ABB Freelance DCS affects every major release line from 2013 through 2024, allowing a locally authenticated low-privilege user to circumvent the product's authentication mechanism and gain elevated control over the system. The CVSS vector (AV:L/PR:L/I:H) confirms the attacker must already hold a foothold on the host but can then achieve high integrity impact - particularly serious in an industrial control system context where manipulating controller configurations can affect physical processes. No public exploit code and no CISA KEV listing have been identified at time of analysis, though the wide version span and OT deployment context elevate remediation urgency. | MEDIUM | 5.6 | 0.0% | 28 |
No patch
|
| CVE-2025-13162 | Uncontrolled Search Path Element (DLL hijacking) in ABB Control Builder A and 800xA for Advant Master enables a local low-privileged attacker to achieve high-integrity code execution on industrial engineering workstations. Affected versions span Control Builder A through 1.4/4 and 800xA for Advant Master through 6.2.0-1, covering multiple release branches of ABB's flagship OT automation suite. No public exploit or CISA KEV listing is identified at time of analysis, limiting immediate mass-exploitation risk, though OT environments running these ICS platforms warrant targeted patching prioritization given integrity-impact severity. | MEDIUM | 4.1 | 0.1% | 21 |
No patch
|