Authorization Bypass Vulnerability in ABB T-MAC Plus
CVE-2025-14772

7.3HIGH

Key Information:

Vendor: Abb
Status: T-mac Plus
Vendor: CVE Published:; 3 June 2026

What is CVE-2025-14772?

An authorization bypass vulnerability has been identified in ABB T-MAC Plus, allowing user-controlled keys to circumvent intended security mechanisms. This flaw enables unauthorized users to gain access to restricted functionalities within the affected product, potentially leading to unauthorized command execution and data exposure. Users of T-MAC Plus versions 4.0-24 are particularly at risk. It is crucial for organizations to patch this vulnerability to safeguard their operations and sensitive information.

Affected Version(s)

T-MAC Plus 4.0-24

References

https://search.abb.com/library/Download.aspx?DocumentID=9...

CVSS V4

Score:

7.3

Severity:

HIGH

Confidentiality:

Low

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 3, 2026
Vulnerability Reserved
Dec 16, 2025

CVE-2025-14772 Data

JSON

Abb

What is CVE-2025-14772?

Affected Version(s)

References

CVSS V4

Timeline