VDB

GCVE-110-NCSC-2025-177

GCVE-110-NCSC-2025-177
Advisory PublishedCVSS 8.0/10
Vulnetix · Advisory published May 23, 2025
CVSS:4.0/AV:N/AC:H/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/R:U/V:C

Weaknesses (CWE)

CWE-94Improper Control of Generation of Code ('Code Injection')CWE-606Unchecked Input for Loop ConditionCWE-36Absolute Path TraversalCWE-286Incorrect User ManagementCWE-73External Control of File Name or PathCWE-434Unrestricted Upload of File with Dangerous TypeCWE-497Exposure of Sensitive System Information to an Unauthorized Control SphereCWE-863Incorrect Authorization

Risk Scores

CVSS 3.1
8.0/10
High · CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

Affected Products

VendorProductVersionsPlatforms
ABBvers:unknown/<=3.08.03

References

advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory

Browse GCVE Records

73,040 records in the GCVE database · Updated July 15, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›