CVE-2025-3394Incorrect Permission Assignment in Automation Builder

CWE-732Incorrect Permission Assignment3 documents3 sources
Severity
8.5HIGHNVD
EPSS
0.1%
top 79.64%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
ABB Automation Builder
Timeline
PublishedApr 30

Description

Incorrect Permission Assignment for Critical Resource vulnerability in ABB Automation Builder.This issue affects Automation Builder: through 2.8.0.

CVSS vector

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Affected Packages2 packages

CVEListV5abb/automation_builder2.8.0

🔴Vulnerability Details

2
CVEList
Vulnerability in user management of Automation Builder2025-04-30
GHSA
GHSA-fcmj-55j6-4jm8: Incorrect Permission Assignment for Critical Resource vulnerability in ABB Automation Builder2025-04-30
CVE-2025-3394 — Incorrect Permission Assignment in ABB | cvebase