ICSA-12-095-01A
·
Published 2025-06-06
·
View on CISA ICS-CERT ↗
ABB Multiple Components Buffer Overflow
CVSS 7.7
HIGH
CVEs (1)
Remediations
- According to ABB, the WebWare Server and the products listed above are legacy products nearing the end of their life cycle that are no longer actively supported. Users of these products are directed to the available documentation on mitigating risk and securing their machines and production environments. Because these are legacy products, ABB does not intend to patch these vulnerable components.
- ABB has released a customer advisory. ABB has also released a whitepaper on WebWare Component security. ABB would like to direct customers using the affected products to review the above documents and implement the recommendations provided.
- ABB customers using these products may contact their local ABB Robotics service organization see (www.abb.com) for information.
- Questions or responses on cybersecurity may be addressed to (mailto:[email protected]).
Affected Vendors
ABB
Affected Products (7)
ABB
·
WebWare Server Data Collector and Interlink
vers:all/*
ABB
·
WebWare SDK
vers:all/*
ABB
·
ABB Interlink Module
vers:all/*
ABB
·
S4 OPC Server
vers:all/*
ABB
·
QuickTeach
vers:all/*
ABB
·
RobotStudio S4
vers:all/*
ABB
·
RobotStudio Lite
vers:all/*
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more