9
CVEs
0
Critical
7
High
0
KEV
0
PoC
7
Unpatched C/H
0.0%
Patch Rate
0.0%
Avg EPSS
Severity Breakdown
CRITICAL
0
HIGH
7
MEDIUM
2
LOW
0
Monthly CVE Trend
Affected Products (30)
Matrix 216 Firmware
29
Nexus 2128 Firmware
29
Matrix 11 Firmware
29
Aspect Ent 96 Firmware
29
Matrix 296 Firmware
29
Nexus 3 2128 Firmware
29
Matrix 232 Firmware
29
Aspect Ent 256 Firmware
29
Aspect Ent 12 Firmware
29
Matrix 264 Firmware
29
Nexus 264 Firmware
29
Nexus 3 264 Firmware
29
Aspect Ent 2 Firmware
29
Nexus 264 G Firmware
28
Nexus 2128 F Firmware
28
Nexus 264 A Firmware
28
Nexus 264 F Firmware
28
Nexus 2128 A Firmware
28
Nexus 2128 G Firmware
28
Zenon
7
Pb610 Panel Builder 600 Firmware
6
800Xa System
5
Pcm600
4
Control Builder Safe
4
Pb610 Panel Builder 600
4
800Xa Base System
4
Compact Hmi
4
Esoms
3
Terra Ac Wallbox Ul32A Firmware
2
Terra Ac Wallbox Ce Ptb Firmware
2
Top Risky CVEs
| CVE | Summary | Severity | CVSS | EPSS | Priority | Signals |
|---|---|---|---|---|---|---|
| CVE-2025-13777 | CVE-2025-13777 is an authentication bypass vulnerability in ABB AWIN Gateway devices (GW100 rev.2 and GW120) that allows attackers on adjacent networks to capture and replay authentication credentials without requiring privileges or user interaction. With a CVSS score of 8.3 and no evidence of active exploitation (not in KEV), this vulnerability enables attackers to gain unauthorized access and potentially compromise system confidentiality, integrity, and availability. | HIGH | 7.2 | 0.0% | 46 |
No patch
|
| CVE-2025-13779 | Authentication bypass in ABB AWIN GW100 rev.2 (2.0-0, 2.0-1) and AWIN GW120 (1.2-0, 1.2-1) industrial gateways allows adjacent-network attackers to invoke critical functions without credentials, resulting in high confidentiality and availability impact. The flaw was reported by ABB itself and carries a CVSS 4.0 score of 7.2; no public exploit identified at time of analysis and EPSS sits at 0.03% (7th percentile), indicating low predicted exploitation likelihood despite the serious technical impact. | HIGH | 7.2 | 0.0% | 46 |
No patch
|
| CVE-2025-13778 | Availability compromise of ABB AWIN GW100 rev.2 and AWIN GW120 industrial gateways stems from a missing authentication check on a critical function (CWE-306), enabling unauthenticated adjacent-network attackers to disrupt device operation. CVSS 4.0 scores the issue 7.1 with high availability impact but no confidentiality or integrity loss, and EPSS rates exploitation probability at just 0.03% (6th percentile) with no public exploit identified at time of analysis. | HIGH | 7.1 | 0.0% | 46 |
No patch
|
| CVE-2025-14771 | Unauthorized file or directory access in ABB T-MAC Plus version 4.0-24 allows authenticated remote attackers to read, modify, or otherwise interact with resources that should not be externally reachable, with CVSS 4.0 scoring 7.3 due to high confidentiality and availability impact plus scope change to subsequent systems. The flaw is classified under CWE-552 (Files or Directories Accessible to External Parties) and was disclosed by ABB itself. There is no public exploit identified at time of analysis and the issue is not listed in CISA KEV. | HIGH | 7.3 | 0.0% | 37 |
No patch
|
| CVE-2025-14772 | Authorization bypass in ABB T-MAC Plus version 4.0-24 allows authenticated remote attackers to access or modify resources belonging to other users by manipulating user-controlled identifiers (IDOR). The flaw scores CVSS 7.3 with high impact to integrity and availability, and no public exploit identified at time of analysis. The vulnerability was reported by the vendor (ABB) itself, indicating coordinated disclosure rather than incident-driven discovery. | HIGH | 7.3 | 0.0% | 37 |
No patch
|
| CVE-2025-14773 | Stored/reflected cross-site scripting in ABB T-MAC Plus version 4.0-24 allows authenticated low-privileged attackers to inject malicious script content into the web management interface, which executes in the browsers of other users who interact with the affected pages. With a CVSS 4.0 base score of 7.2 and no public exploit identified at time of analysis, the flaw is notable because successful exploitation impacts both the vulnerable component and downstream subsequent systems with high integrity and availability consequences, reflecting the operational-technology context typical of ABB industrial products. | HIGH | 7.2 | 0.0% | 36 |
No patch
|
| CVE-2025-14774 | Authorization bypass in ABB T-MAC Plus version 4.0-24 allows adjacent-network attackers to perform unauthorized actions that compromise device integrity and availability without any credentials or user interaction. The flaw is an incorrect authorization weakness (CWE-863) carrying a CVSS 4.0 score of 7.2, and no public exploit identified at time of analysis. ABB itself disclosed the issue and published an advisory describing the affected firmware. | HIGH | 7.2 | 0.0% | 36 |
No patch
|
| CVE-2025-7064 | Authentication bypass via primary weakness (CWE-305) in ABB Freelance DCS affects every major release line from 2013 through 2024, allowing a locally authenticated low-privilege user to circumvent the product's authentication mechanism and gain elevated control over the system. The CVSS vector (AV:L/PR:L/I:H) confirms the attacker must already hold a foothold on the host but can then achieve high integrity impact - particularly serious in an industrial control system context where manipulating controller configurations can affect physical processes. No public exploit code and no CISA KEV listing have been identified at time of analysis, though the wide version span and OT deployment context elevate remediation urgency. | MEDIUM | 5.6 | 0.0% | 28 |
No patch
|
| CVE-2025-13162 | Uncontrolled Search Path Element (DLL hijacking) in ABB Control Builder A and 800xA for Advant Master enables a local low-privileged attacker to achieve high-integrity code execution on industrial engineering workstations. Affected versions span Control Builder A through 1.4/4 and 800xA for Advant Master through 6.2.0-1, covering multiple release branches of ABB's flagship OT automation suite. No public exploit or CISA KEV listing is identified at time of analysis, limiting immediate mass-exploitation risk, though OT environments running these ICS platforms warrant targeted patching prioritization given integrity-impact severity. | MEDIUM | 4.1 | 0.1% | 21 |
No patch
|