CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cvelist•added 2026/06/11 9:7 a.m.•27 views

CVE-2025-7064 Freelance Security Lock – Access to Windows OS

Authentication bypass by primary weakness vulnerability in ABB Freelance. This issue affects Freelance: through 2013, 2013 SP1, 2016, 2016 SP1, 2019, 2019 SP1, 2019 SP1 FP1, 2024...

7.1CVSS0.00116EPSS

CNNVD•added 2026/06/11 12:0 a.m.•10 views

ABB Freelance 安全漏洞

ABB Freelance is a distributed control system developed by the Swiss company ABB. There is a security vulnerability in ABB Freelance, which stems from an authentication bypass exploit. The following versions are affected: Version 2013, Version 2013 SP1, Version 2016, Version 2016 SP1, Version 201...

7.1CVSS5.3AI score0.00116EPSS

Positive Technologies•added 2026/06/11 12:0 a.m.•7 views

PT-2026-48635

Authentication bypass by primary weakness vulnerability in ABB Freelance. This issue affects Freelance: through 2013, 2013 SP1, 2016, 2016 SP1, 2019, 2019 SP1, 2019 SP1 FP1, 2024...

7.1CVSS5.4AI score0.00116EPSS

NVD•added 2026/06/03 11:16 a.m.•10 views

CVE-2025-14771

Files or directories accessible to external parties vulnerability in ABB T-MAC Plus. This issue affects T-MAC Plus: 4.0-24...

9.9CVSS0.00289EPSS

CVE•added 2026/06/03 9:48 a.m.•15 views

CVE-2025-14774

ABB T-MAC Plus 4.0-24 is affected by an Incorrect Authorization vulnerability. The CVSS metrics indicate adjacent access with low attack complexity and no user interaction, but no exploitable details or patch information are provided in the documents. Impact is reported as HIGH for integrity and ...

7.4CVSS5.8AI score0.00153EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2026/06/03 9:48 a.m.•7 views

CVE-2025-14774 Communication analysis between the Card Reader and TP2CardReaderService daemon

Incorrect Authorization vulnerability in ABB T-MAC Plus. This issue affects T-MAC Plus: 4.0-24...

7.4CVSS5.8AI score0.00153EPSS

ATTACKERKB•added 2026/06/03 9:48 a.m.•5 views

CVE-2025-14774

Incorrect Authorization vulnerability in ABB T-MAC Plus. This issue affects T-MAC Plus: 4.0-24...

7.4CVSS5.8AI score0.00153EPSS

Exploits0References2Affected Software1

Vulnrichment•added 2026/06/03 9:25 a.m.•6 views

CVE-2025-14772 Broken Access Control in ABB T-MAC Plus web application

Authorization bypass through User-Controlled key vulnerability in ABB T-MAC Plus. This issue affects T-MAC Plus: 4.0-24...

8.8CVSS5.8AI score0.00248EPSS

CNNVD•added 2026/06/03 12:0 a.m.•5 views

ABB T-MAC Plus 跨站脚本漏洞

ABB T-MAC Plus is a shipboard equipment status monitoring and predictive maintenance management system developed by the Swiss company ABB. Version 4.0-24 of ABB T-MAC Plus contains a cross-site scripting vulnerability, which stems from improper input handling and may lead to cross-site scripting...

8CVSS4.9AI score0.00175EPSS

ICS•added 2026/04/13 12:30 a.m.•3 views

ABB Ability Symphony Plus Engineering

SUMMARY ABB became aware of vulnerability in the products versions listed as affected in the advisory. The ABB S+ Engineering product versions are affected by vulnerabilities in PostgreSQL version 13.11 and earlier versions. If an attacker gains access to a site’s S+ Client Server network, they...

8.4AI score

Exploits0References18

RedhatCVE•added 2026/03/26 3:5 p.m.•4 views

CVE-2025-13779

Missing authentication for critical function vulnerability in ABB AWIN GW100 rev.2, ABB AWIN GW120.This issue affects AWIN GW100 rev.2: 2.0-0, 2.0-1; AWIN GW120: 1.2-0, 1.2-1...

RedhatCVE•added 2026/03/26 3:4 p.m.•3 views

CVE-2025-13778

Missing authentication for critical function vulnerability in ABB AWIN GW100 rev.2, ABB AWIN GW120.This issue affects AWIN GW100 rev.2: 2.0-0, 2.0-1; AWIN GW120: 1.2-0, 1.2-1...

7.1CVSS5.8AI score0.00274EPSS

EUVD•added 2026/03/13 9:31 p.m.•2 views

EUVD-2025-208631

Authentication bypass by capture-replay vulnerability in ABB AWIN GW100 rev.2, ABB AWIN GW120.This issue affects AWIN GW100 rev.2: 2.0-0, 2.0-1; AWIN GW120: 1.2-0, 1.2-1...

8.3CVSS5.8AI score0.00228EPSS

EUVD•added 2026/03/13 9:31 p.m.•4 views

EUVD-2025-208635

Missing authentication for critical function vulnerability in ABB AWIN GW100 rev.2, ABB AWIN GW120.This issue affects AWIN GW100 rev.2: 2.0-0, 2.0-1; AWIN GW120: 1.2-0, 1.2-1...

NVD•added 2026/03/13 7:53 p.m.•4 views

CVE-2025-13779

Missing authentication for critical function vulnerability in ABB AWIN GW100 rev.2, ABB AWIN GW120.This issue affects AWIN GW100 rev.2: 2.0-0, 2.0-1; AWIN GW120: 1.2-0, 1.2-1...

8.3CVSS0.00285EPSS

Circl•added 2026/03/13 4:47 p.m.•4 views

CVE-2025-13778

creationtimestamp| type| source ---|---|--- 2026-03-13 16:47:37+00:00| seen| https://cyber.gc.ca/en/alerts-advisories/control-systems-abb-security-advisory-av26-236 2026-04-30 05:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-120-05...

7.1CVSS4.8AI score0.00274EPSS

Circl•added 2026/03/13 4:47 p.m.•4 views

CVE-2025-13779

creationtimestamp| type| source ---|---|--- 2026-03-13 16:47:37+00:00| seen| https://cyber.gc.ca/en/alerts-advisories/control-systems-abb-security-advisory-av26-236 2026-03-31 09:34:12+00:00| seen| https://bsky.app/profile/secqube.com/post/3midups7grn2g 2026-04-30 05:00:00+00:00| seen|...

8.3CVSS5.3AI score0.00285EPSS

Exploits0References3

Vulnrichment•added 2026/03/13 1:11 p.m.•4 views

CVE-2025-13779 Configuration Data Spill

Missing authentication for critical function vulnerability in ABB AWIN GW100 rev.2, ABB AWIN GW120.This issue affects AWIN GW100 rev.2: 2.0-0, 2.0-1; AWIN GW120: 1.2-0, 1.2-1...

CVE•added 2026/03/13 1:11 p.m.•8 views

CVE-2025-13779

The CVE-2025-13779 entry concerns ABB AWIN GW100 rev.2 and AWIN GW120 units with a missing authentication vulnerability in a critical function. Affected revisions: GW100 rev.2 (2.0-0, 2.0-1) and GW120 (1.2-0, 1.2-1). The issue is exploitable with adjacent attack vector, low complexity, no privile...