PT-2025-47610 · Abb · Abb Ability Edgenius
Published
2025-11-20
·
Updated
2026-04-30
·
CVE-2025-10571
CVSS v3.1
9.6
Critical
| Vector | AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
ABB Ability Edgenius versions 3.2.0.0 through 3.2.1.1
Description
An authentication bypass issue exists in ABB Ability Edgenius. This allows attackers to gain full control over industrial edge devices without valid credentials by exploiting an adjacent network authentication bypass. The issue involves using an alternate path or channel to circumvent normal authentication procedures.
Recommendations
ABB Ability Edgenius version 3.2.0.0 should be updated.
ABB Ability Edgenius version 3.2.1.1 should be updated.
Fix
RCE
Authentication Bypass Using an Alternate Path or Channel
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Abb Ability Edgenius