CVE-2025-13777HIGH 8.3EPSS p13.4%

CVE-2025-13777CVE-2025-13777

Description

Authentication bypass by capture-replay vulnerability in ABB AWIN GW100 rev.2, ABB AWIN GW120.This issue affects AWIN GW100 rev.2: 2.0-0, 2.0-1; AWIN GW120: 1.2-0, 1.2-1.

Scoring

CVSS 3.18.3 (HIGH)
VectorCVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:H
EPSS0.23% probability of exploitation · percentile 13.4% · 2026-06-18T12:00:27Z
Published2026-03-13
Last modified2026-05-19

Underlying weaknesses· 1

CWE-294

References

  1. https://search.abb.com/library/Download.aspx?DocumentID=4JNO000329&LanguageCode=en&DocumentPartId=&Action=Launch

1

TypeTargetConfidenceTier
WeaknessAuthentication Bypass by Capture-replaycwe-2940%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-13779
CVE
CVE-2025-10571
CVE
CVE-2025-14510
CVE
CVE-2025-14774
CVE
CVE-2025-9574
CVE
CVE-2025-14772
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.