CVE-2025-13779 - Vulnerability Analysis
HighCVSS: 8.3Last Updated: March 13, 2026
ABB AWIN - Authentication Bypass
Published: March 13, 2026Updated: March 13, 2026
Overview
ABB AWIN GW100 rev.2 2.0-0, 2.0-1 and AWIN GW120 1.2-0, 1.2-1 contain a broken authentication caused by missing authentication for critical functions, letting attackers access critical functions without authentication, exploit requires no special conditions.
Severity & Score
Severity: High
CVSS Score: 8.3
Impact
Attackers can access critical functions without authentication, potentially leading to unauthorized control or data manipulation.
Mitigation
Update to the latest available version.
Related Resources
Details
- CVE ID
- CVE-2025-13779
- Severity
- High
- CVSS Score
- 8.3
- Type
- broken_authentication
- Status
- new
CWE
- CWE-306
CVSS Metrics
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:H