CVE-2025-4675 MEDIUM

CVE-2025-4675: Improper implementation of Modbus protocol leading to DOS attack

Vendor Abb
Product WebPro SNMP Card PowerValue
Weakness CWE-754
Published January 7, 2026
Last update January 7, 2026

CVSS base score

6.5/10
Attack vector Adjacent
Attack complexity Low
Privileges required None
User interaction None
Confidentiality None
Integrity None

CVSS vector

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

What the vulnerability does

01Description

Improper Check for Unusual or Exceptional Conditions vulnerability in ABB WebPro SNMP Card PowerValue, ABB WebPro SNMP Card PowerValue UL.This issue affects WebPro SNMP Card PowerValue: through 1.1.8.K; WebPro SNMP Card PowerValue UL: through 1.1.8.K.

Key dates

02Disclosure timeline

January 7, 2026 CVE published
January 7, 2026 Record updated