CVE-2025-14771
Files Accessible to External Parties in ABB T-MAC Plus
Publication date: 2026-06-03
Last updated on: 2026-06-03
Assigner: Asea Brown Boveri Ltd. (ABB)
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| abb | t-mac_plus | From 4.0 (inc) to 24 (inc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-552 | The product makes files or directories accessible to unauthorized actors, even though they should not be. |
Attack-Flow Graph
AI Powered Q&A
How can this vulnerability impact me? :
The vulnerability can lead to unauthorized disclosure of sensitive information, potentially compromising confidentiality, integrity, and availability of data managed by ABB T-MAC Plus. Attackers with access could exploit this to disrupt operations or steal critical information.
Can you explain this vulnerability to me?
This vulnerability in ABB T-MAC Plus version 4.0-24 allows files or directories to be accessible to external parties. This means unauthorized users outside the intended network or system boundaries may gain access to sensitive files or directories.