ICSA-26-120-05 · Published 2026-04-30 · View on CISA ICS-CERT ↗

ABB AWIN Gateways

CVSS 8.3 HIGH

Risk Summary

ABB became aware of vulnerability in the products versions listed as affected in the advisory. An update is available that resolves the reported vulnerabilities. AWIN gateways are not intended to be internet-facing. An attacker who successfully exploited this vulnerability could take remote control of the product and reboot the device, potentially causing a denial of service. It can also reveal system specific configuration. ABB requires, as noted in the User Manual, that AWIN gateways should not be exposed to the internet or any other insecure network. Note. To exploit this vulnerability the attacker needs access to the AWIN gateways. These gateways are installed on sites which often have perimeter security, and the gateways are installed behind firewalls.

CVEs (3)

CVE-2025-13777 CVE-2025-13778 CVE-2025-13779

Remediations

Do the following actions: - Stop and disconnect any AWIN gateways that are exposed directly to the Internet. - Ensure that physical controls are in place, so no unauthorized personnel can access your devices, components, peripheral equipment, and networks. - Ensure that all AWIN gateways are upgraded to the latest firmware version. Please find the latest version of firmware on the respective product Release Notes. - When remote access is required, only use secure methods. The problem is corrected in the following product versions: - AWIN GW100 rev2: v2.1-0 - AWIN GW120: v2.0-0 ABB recommends that customers contact ABB to obtain the updated firmware as soon as possible. ABB Service Support engineer shall apply the firmware update at earliest convenience.
AWIN gateways are NOT internet facing devices and should be installed behind firewalls. These gateways are intended to be located between level 0 (process) and level 1 (basic control) hierarchy of the IEC 62443 reference model. Ensure that physical controls are in place, so no unauthorized personnel can access your devices, components, peripheral equipment, and networks. Update the firmware on the gateways with the newer versions with the fix. At the time of writing the following versions are latest: - AWIN GW100 rev2: v2.1-0 - AWIN GW120: v2.0-0 Refer to the Release Notes and Product Bulletins for up-to-date information on the latest firmware re-leases.

Affected Vendors

ABB

Affected Products (7)

ABB · GW120 GW120

ABB · GW100 rev.2 2.0-0

ABB · GW100 rev.2 2.0-1

ABB · GW100 rev.2 2.1-0

ABB · GW120 1.2-0

ABB · GW120 1.2-1

ABB · GW120 2.0-0

Affected Sectors

Critical Manufacturing

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more