Authentication Algorithm Flaw in ABB WebPro SNMP Card PowerValue Products
CVE-2025-4676

8.4HIGH

Key Information:

Vendor: Abb
Status: Webpro Snmp Card Powervalue; Webpro Snmp Card Powervalue Ul
Vendor: CVE Published:; 7 January 2026

What is CVE-2025-4676?

A security flaw exists in ABB's WebPro SNMP Card PowerValue products, resulting from an incorrect implementation of the authentication algorithm. This vulnerability could allow unauthorized access to the devices, posing significant risks to network integrity and data confidentiality. Users of the WebPro SNMP Card PowerValue and PowerValue UL should review their current product versions and consider applying available updates to mitigate potential security threats.

Affected Version(s)

WebPro SNMP Card PowerValue 0 <= 1.1.8.k

WebPro SNMP Card PowerValue UL 0 <= 1.1.8.k

References

https://search.abb.com/library/Download.aspx?DocumentID=2...

CVSS V4

Score:

8.4

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

High

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

Unknown

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 7, 2026
Vulnerability Reserved
May 14, 2025

CVE-2025-4676 Data

JSON

Abb

What is CVE-2025-4676?

Affected Version(s)

References

CVSS V4

Timeline