CVE-2025-7677
Unknown
Unknown - Not Provided
BaseFortify
Publication date: 2025-08-11
Last updated on: 2025-09-08
Assigner: Asea Brown Boveri Ltd. (ABB)
Description
Description
A denial-of-service (DoS) attack is possible if access to the local network is provided to unauthorized users. This is due to a buffer copy issue that may lead to a software crash.
This issue affects all versions of ASPECT.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| abb | aspect | * |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-120 | The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a Missing Authentication for Critical Function issue in ABB Aspect affecting all versions. It means that certain critical functions in the software do not require proper authentication, potentially allowing unauthorized users to perform sensitive actions.
How can this vulnerability impact me? :
The impact of this vulnerability is high as unauthorized users could exploit the missing authentication to perform critical functions without permission, potentially leading to significant disruption or damage to the affected system.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70