Missing Integrity Check in ABB KNX Update Tool Affects ABB Products
CVE-2026-12705

5.9MEDIUM

Key Information:

Vendor

Abb

Vendor
CVE Published:
17 July 2026

What is CVE-2026-12705?

A significant vulnerability exists in the ABB KNX Update Tool, as it lacks essential support for integrity checks. This issue can potentially allow unauthorized modifications and compromise the security of systems relying on this software. Both the ABB and BJE versions of the KNX Update Tool, up to and including version 2.0.175, are affected. Users should take immediate measures to mitigate risks associated with this vulnerability.

Affected Version(s)

KNX Update Tool (ABB) 0 <= 2.0.175

KNX Update Tool (BJE) 0 <= 2.0.175

References

CVSS V4

Score:
5.9
Severity:
MEDIUM
Confidentiality:
None
Integrity:
High
Availability:
High
Attack Vector:
Adjacent Network
Attack Complexity:
High
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.