CVE-2025-3395

CWE-312Cleartext Storage of Sensitive InfoCWE-732Incorrect Permission Assignment4 documents4 sources
Severity
8.4HIGH
EPSS
0.0%
top 88.76%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
ABB Automation Builder
Timeline
PublishedApr 30
Latest updateAug 30

Description

Incorrect Permission Assignment for Critical Resource, Cleartext Storage of Sensitive Information vulnerability in ABB Automation Builder.This issue affects Automation Builder: through 2.8.0.

CVSS vector

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N

Affected Packages2 packages

CVEListV5abb/automation_builder2.8.0

🔴Vulnerability Details

2
GHSA
GHSA-ccmg-3338-rh6p: Incorrect Permission Assignment for Critical Resource, Cleartext Storage of Sensitive Information vulnerability in ABB Automation Builder2025-04-30
CVEList
CVE-2025-3395: Incorrect Permission Assignment for Critical Resource, Cleartext Storage of Sensitive Information vulnerability in ABB Automation Builder2025-04-30

📋Vendor Advisories

1
Red Hat
kernel: f2fs: fix to avoid out-of-boundary access in dnode page2025-08-30
CVE-2025-3395 (HIGH CVSS 8.4) | Incorrect Permission Assignment for | cvebase.io