You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
cve-2025-3465
About this tag
CVE-2025-3465 is a high-severity path traversal vulnerability in ABB CoreSense HM and CoreSense M10 devices, as disclosed by CISA on May 19, 2026. The flaw affects deployments in food and agriculture, commercial facilities, and critical manufacturing sectors. While not an internet-scale threat, it becomes exploitable after an attacker gains local network access, exploiting trust in local web interfaces. ABB has released patches, but the vulnerability underscores the importance of plant-floor segmentation and rethinking localhost trust in industrial environments. Discussions on WindowsForum.com focus on mitigation strategies and the broader implications for industrial control system security.
CISA on May 19, 2026, republished ABB’s advisory for CVE-2025-3465, a high-severity path traversal flaw in CoreSense HM and CoreSense M10 that affects worldwide deployments in food and agriculture, commercial facilities, and critical manufacturing when vulnerable local web interfaces are...