CVE-2025-14774
Incorrect Authorization in ABB T-MAC Plus
Publication date: 2026-06-03
Last updated on: 2026-06-03
Assigner: Asea Brown Boveri Ltd. (ABB)
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| abb | t-mac_plus | to 24 (inc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-863 | The product performs an authorization check when an actor attempts to access a resource or perform an action, but it does not correctly perform the check. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is an Incorrect Authorization issue found in ABB T-MAC Plus version 4.0-24. Incorrect Authorization means that the system does not properly verify whether a user or process has the correct permissions to perform certain actions, potentially allowing unauthorized activities.
How can this vulnerability impact me? :
The vulnerability can lead to unauthorized actions being performed on the affected system, which may result in disruption or damage. According to the CVSS v3.1 score, it has a high impact on availability, meaning it could cause denial of service or other availability issues, although confidentiality and integrity are not directly impacted.