PT-2026-25313 · Abb · Awin Gw100 Rev.2+1
Published
2026-03-13
·
Updated
2026-05-19
·
CVE-2025-13779
CVSS v3.1
8.3
High
| Vector | AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:H |
Name of the Vulnerable Software and Affected Versions
ABB AWIN GW100 rev.2 versions 2.0-0 through 2.0-1
ABB AWIN GW120 versions 1.2-0 through 1.2-1
Description
A critical function lacks proper authentication. This allows unauthorized access to sensitive functionality within the affected systems. The issue concerns ABB AWIN GW100 rev.2 and ABB AWIN GW120 devices.
Recommendations
ABB AWIN GW100 rev.2 versions 2.0-0 through 2.0-1 should be updated.
ABB AWIN GW120 versions 1.2-0 through 1.2-1 should be updated.
Fix
Missing Authentication
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Awin Gw100 Rev.2
Awin Gw120