PT-2026-25311 · Abb · Awin Gw100 Rev.2+1
Published
2026-03-13
·
Updated
2026-05-19
·
CVE-2025-13777
CVSS v3.1
8.3
High
| Vector | AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:H |
Name of the Vulnerable Software and Affected Versions
ABB AWIN GW100 rev.2 versions 2.0-0 through 2.0-1
ABB AWIN GW120 versions 1.2-0 through 1.2-1
Description
An authentication bypass exists due to a capture-replay flaw in ABB AWIN GW100 rev.2 and ABB AWIN GW120. This allows an attacker to potentially gain unauthorized access by capturing and replaying legitimate authentication data.
Recommendations
ABB AWIN GW100 rev.2 versions 2.0-0 through 2.0-1 should be updated.
ABB AWIN GW120 versions 1.2-0 through 1.2-1 should be updated.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Awin Gw100 Rev.2
Awin Gw120