CVE-2025-9574

Description

Missing Authentication for Critical Function vulnerability in ABB ALS-mini-s4 IP, ABB ALS-mini-s8 IP.This issue affects .  All firmware versions with the Serial Number from 2000 to 5166

PUBLISHED Reserved 2025-08-28 | Published 2025-10-20 | Updated 2025-10-24 | Assigner ABB

Problem types

CWE-306 Missing Authentication for Critical Function

Product status

Credits

ABB acknowledges Souvik Kandar of MicroSec (microsec.io), for reporting vulnerabilities in responsible disclosure. finder

References

search.abb.com/...geCode=en&DocumentPartId=PDF&Action=Launch

cve.org (CVE-2025-9574)

nvd.nist.gov (CVE-2025-9574)

Download JSON