Authentication Bypass in ABB Freelance Product
CVE-2025-7064

5.6MEDIUM

Key Information:

Vendor

Abb

Status
Vendor
CVE Published:
11 June 2026

What is CVE-2025-7064?

The ABB Freelance control system has a vulnerability that allows an attacker to bypass authentication mechanisms. This flaw can potentially let unauthorized users access sensitive features and information within the affected versions of Freelance software, exploiting the weaknesses inherent in its authentication practices. Prompt mitigation and review of security protocols are advisable for users utilizing the impacted versions.

Affected Version(s)

Freelance 0 <= 2013

Freelance 2013 SP1

Freelance 2016

References

CVSS V4

Score:
5.6
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
High
Availability:
Low
Attack Vector:
Local
Attack Complexity:
Low
Attack Required:
Physical
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.