CVE-2025-7745 MEDIUM

Published: 2025-07-24 | Last Modified: 2026-04-15 | Status: Deferred

Description

Buffer Over-read vulnerability in ABB AC500 V2.This issue affects AC500 V2: through 2.5.2.

Additional Descriptions (1)

Vulnerabilidad de sobrelectura de búfer en ABB AC500 V2. Este problema afecta a AC500 V2: hasta 2.5.2.

CVSS Metrics

Base Score: 5.8 (MEDIUM)

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N

Attack Vector	NETWORK
Attack Complexity	LOW
Privileges Required	NONE
User Interaction	NONE
Scope	CHANGED
Confidentiality Impact	LOW
Integrity Impact	NONE
Availability Impact	NONE

Source: [email protected]

Type: Secondary

Exploitability Score: 3.9

Impact Score: 1.4

Base Score: 6.9 (MEDIUM)

CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:L/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Attack Vector	NETWORK
Attack Complexity	LOW
Attack Requirements	PRESENT
Privileges Required	NONE
User Interaction	NONE
Vulnerability Confidentiality	LOW
Vulnerability Integrity	NONE
Vulnerability Availability	NONE
Subsequent Confidentiality	NONE
Subsequent Integrity	LOW
Subsequent Availability	HIGH

Source: [email protected]

Type: Secondary

Weaknesses

Source	Type	Description
[email protected]	Secondary	en CWE-126

References

https://search.abb.com/library/Download.aspx?DocumentID=3ADR011432&LanguageCode=en&DocumentPartId=&Action=Launch
Source: [email protected]