CVE-2025-7064 | THREATINT

Description

Authentication bypass by primary weakness vulnerability in ABB Freelance. This issue affects Freelance: through 2013, 2013 SP1, 2016, 2016 SP1, 2019, 2019 SP1, 2019 SP1 FP1, 2024.

PUBLISHED Reserved 2025-07-04 | Published 2026-06-11 | Updated 2026-06-11 | Assigner ABB

MEDIUM: 6.6CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L

MEDIUM: 5.6CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:L/SC:L/SI:H/SA:L/E:P/AU:N/R:U/V:D/RE:L/U:Green

Problem types

CWE-305 Authentication bypass by primary weakness

Product status

Default status

unaffected

Any version

affected

2013 SP1 (custom)

affected

2016 (custom)

affected

2016 SP1 (custom)

affected

2019 (custom)

affected

2019 SP1 (custom)

affected

2019 SP1 FP1 (custom)

affected

2024 (custom)

affected

References

search.abb.com/...guageCode=en&DocumentPartId=&Action=Launch

cve.org (CVE-2025-7064)

nvd.nist.gov (CVE-2025-7064)

Download JSON