ABB AbilityTM Zenon Remote Transport Vulnerability
Summary
ABB has acknowledged vulnerabilities in its Ability™ Zenon Remote Transport Service, allowing unauthorized users to initiate system reboots without authentication. Exploitation requires prior network access to the affected system, and as of now, there is no indication of active exploitation in the wild. The vulnerability, identified as CVE-2025-8754, affects versions of ABB Ability™ Zenon up to and including version 14.
IFF Assessment
This vulnerability allows unauthorized actors to trigger system reboots, impacting the availability and integrity of critical infrastructure systems.
Severity
The CVSS score of 7.5 reflects a high severity, primarily due to the 'Missing Authentication for Critical Function' vulnerability. While it requires prior network access, the ability to remotely reboot a critical system without authentication presents a significant risk to availability.
Defender Context
This alert highlights a critical vulnerability in an industrial control system component, impacting numerous sectors. Defenders should prioritize patching or implementing mitigating controls if their organization utilizes ABB Ability™ Zenon. The requirement for prior network access means attackers might leverage other entry points before exploiting this reboot vulnerability.