ByteOS Network

CVE Vulnerability Details :

CVE-2025-7745

PUBLISHED

More Info Official Page

Assigner-ABB

Assigner Org ID-2b718523-d88f-4f37-9bbd-300c20644bf9

Published At-24 Jul, 2025 | 07:09

Updated At-24 Jul, 2025 | 13:17

▼CVE Numbering Authority (CNA)

Modbus TCP buffer overread

Buffer Over-read vulnerability in ABB AC500 V2.This issue affects AC500 V2: through 2.5.2.

Affected Products

Vendor

ABB

Product

AC500 V2

Default Status

unaffected

Versions

Affected

From 0 through 2.5.2 (custom)

Problem Types

Type	CWE ID	Description
CWE	CWE-126	CWE-126: Buffer Over-read

Type: CWE

CWE ID: CWE-126

Description: CWE-126: Buffer Over-read

Metrics

Version	Base score	Base severity	Vector
3.1	5.8	MEDIUM	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N
4.0	6.9	MEDIUM	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:L/SA:H

Version: 3.1

Base score: 5.8

Base severity: MEDIUM

Vector:

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N

Version: 4.0

Base score: 6.9

Base severity: MEDIUM

Vector:

CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:L/SA:H

Credits

finder

ABB acknowledges and extends gratitude to Reid Wightman of Dragos Inc for responsibly disclosing the vulnerability and providing valuable input on product improvements

References

Hyperlink	Resource
https://search.abb.com/library/Download.aspx?DocumentID=3ADR011432&LanguageCode=en&DocumentPartId=&Action=Launch	N/A

Hyperlink: https://search.abb.com/library/Download.aspx?DocumentID=3ADR011432&LanguageCode=en&DocumentPartId=&Action=Launch

Resource: N/A

▼Authorized Data Publishers (ADP)

CISA ADP Vulnrichment

Affected Products

Affected

Problem Types

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

Affected Products

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References