SA25P007 — Vulnetix

SA25P007 PUBLISHED CVSS 9.800000190734863 CRITICAL

ABB became aware of vulnerability in the product versions listed as affected in the advisory. An update is available that replaces an outdated third-party component. Although no successful exploitation was observed during testing of the affected B&R products, the identified vulnerabilities could present potential attack vectors that might enable unauthorized access, data exposure, or remote code execution.

Risk Scores

CVSS v3.1

9.800000190734863

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C

Affected Products

Vendor	Product	Versions
	ABB B&R Automation Studio 6.5
	ABB B&R Automation Studio <6.5

Timeline

Feb 18, 2026 CVE Published

References

https://www.br-automation.com/fileadmin/SA25P007-097a386d.pdf advisory
https://psirt.abb.com/csaf/2026/sa25p007.json advisory

Open in Interactive Console →