Input Validation Flaw in ABB FLXEON Products
CVE-2024-48851

7.5HIGH

Key Information:

Vendor: Abb
Status: Flxeon
Vendor: CVE Published:; 18 September 2025

What is CVE-2024-48851?

An improper validation of specified type of input vulnerability exists in ABB FLXEON products, enabling the potential for remote code execution. This vulnerability occurs when the input validation processes fail to properly restrict or check user inputs, allowing attackers to exploit the flaw and execute arbitrary code on the affected system. Users of FLXEON versions up to 9.3.5 are urged to implement security measures to mitigate the risks associated with this vulnerability.

Affected Version(s)

FLXEON 0 <= 9.3.5

References

https://search.abb.com/library/Download.aspx?DocumentID=9...

CVSS V4

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 18, 2025
Vulnerability Reserved
Oct 8, 2024

Credit

ABB likes to thank Gjoko Krstikj, Zero Science Lab, for reporting the vulnerabilities in responsible disclosure.

JSON

Abb

What is CVE-2024-48851?

Affected Version(s)

References

CVSS V4

Timeline

Credit