CVE-2025-7679

The ASPECT system allows users to bypass authentication. This issue affects all versions of ASPECT...

CVE-2025-53191

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

CVE-2025-7679

ABB Aspect (ASPECT) BMS/BAS suffers an authentication bypass across all versions; root cause involves debugging code left in market release. ATT&CK/impact details: attacker could bypass login to access files, change system time, and invoke functions without authentication; DoS is possible if on l...

CVE-2025-7679 Session ID Basic Auth Bypass

The ASPECT system allows users to bypass authentication. This issue affects all versions of ASPECT...

CVE-2025-7679 Session ID Basic Auth Bypass

The ASPECT system allows users to bypass authentication. This issue affects all versions of ASPECT...

CVE-2025-7677

CVE-2025-7677 affects ABB Aspect (industrial control system) with a DoS caused by a buffer copy issue. According to ICSA-25-252-02, the DoS affects all versions of ASPECT, with specific note that versions prior to 3.08.04-s01 are impacted. The DoS is exploitable if an attacker has access to the l...

CVE-2025-7677 DOS attack possible

A denial-of-service DoS attack is possible if access to the local network is provided to unauthorized users. This is due to a buffer copy issue that may lead to a software crash. This issue affects all versions of ASPECT...

CVE-2025-7677 DOS attack possible

A denial-of-service DoS attack is possible if access to the local network is provided to unauthorized users. This is due to a buffer copy issue that may lead to a software crash. This issue affects all versions of ASPECT...

CVE-2025-53191

...

CVE-2025-53191

CVE-2025-53191 entry is rejected/not used and does not represent an active vulnerability.

CVE-2025-53191

...

PT-2025-32568

Name of the Vulnerable Software and Affected Versions: ABB Aspect affected versions not specified Description: A missing authentication issue exists for a critical function in ABB Aspect. This allows unauthorized access to sensitive functionality. Recommendations: At the moment, there is no...

PT-2025-32567

Name of the Vulnerable Software and Affected Versions: ABB Aspect versions prior to 3.08.04-s01 Description: A missing authentication check exists for a critical function in ABB Aspect. Recommendations: Update ABB Aspect to version 3.08.04-s01 or later...

PT-2025-32569

Name of the Vulnerable Software and Affected Versions: ABB Aspect affected versions not specified Description: A missing authentication flaw exists in ABB Aspect, potentially allowing unauthorized access to critical functions. Recommendations: At the moment, there is no information about a newer...

CVE-2025-5095 Burk Technology ARC Solo Missing Authentication for Critical Function

Burk Technology ARC Solo's password change mechanism can be utilized without proper authentication procedures, allowing an attacker to take over the device. A password change request can be sent directly to the device's HTTP endpoint without providing valid credentials. The system does not enforc...

CVE-2025-8284 Packet Power EMX and EG Missing Authentication for Critical Function

By default, the Packet Power Monitoring and Control Web Interface do not enforce authentication mechanisms. This vulnerability could allow unauthorized users to access and manipulate monitoring and control functions...

CVE-2025-8284 Packet Power EMX and EG Missing Authentication for Critical Function

By default, the Packet Power Monitoring and Control Web Interface do not enforce authentication mechanisms. This vulnerability could allow unauthorized users to access and manipulate monitoring and control functions...

PT-2025-33057

Name of the Vulnerable Software and Affected Versions: ABB AbilityTM zenon versions 7.50 through 14 Description: A missing authentication flaw exists in ABB AbilityTM zenon that allows unauthorized access to a critical function. Recommendations: ABB AbilityTM zenon versions 7.50 through 14:...

(0Day) AOMEI Cyber Backup Missing Authentication for Critical Function Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of AOMEI Cyber Backup. Authentication is not required to exploit this vulnerability. The specific flaw exists within the StorageNode service, which listens on TCP port 9075 by default. The issue results...

PT-2025-32194 · Aomei · Aomei Cyber Backup

Name of the Vulnerable Software and Affected Versions: AOMEI Cyber Backup affected versions not specified Description: AOMEI Cyber Backup is affected by a missing authentication issue for a critical function, potentially leading to remote code execution. Recommendations: At the moment, there is n...