CISA 2026-05-12

ABB WebPro SNMP Card PowerValue Multiple Vulnerabilities

CVE-2025-4675

Machine-generated analysis · WAYSCloud LLM

The advisory specifies that these vulnerabilities were internally discovered by ABB. The affected device's Modbus service becomes unavailable until manually rebooted when exploited.

Context

The ABB WebPro SNMP Card PowerValue is a network interface card for power systems. The advisory states that successful exploitation could lead to unauthorized access, resource unavailability due to insufficient session expiration, and denial of service from uncontrolled resource consumption. The advisory explicitly notes deployment in multiple critical infrastructure sectors including energy, healthcare, and water systems.

Operator considerations

Check: Inventory for ABB WebPro SNMP Card PowerValue versions ≤1.1.8.k
Isolate: Restrict network access to port 502 and the device management interface
Patch: Contact ABB Digital Service Support (ch.ups.digital@abb.com) for firmware update to version 1.1.8.p
Log: Monitor for unexpected Modbus service disruptions or authentication failures

From Cybersecurity and Infrastructure Security Agency ↗

ABB became aware of multiple internally discovered vulnerabilities in the WebPro SNMP card PowerValue for the product versions listed as affected in the advisory. Depending upon the vulnerability, an attacker with access to local network who successfully exploited this vulnerability could have - Unauthorized access - Insufficient Session Expiration leading to resource unavailability - Uncontrolled Resource Consumption leading to DOS attack ABB strongly advises customers to update the latest firmware of affected products.

The following versions of ABB WebPro SNMP Card PowerValue Multiple Vulnerabilities are affected:

WebPro SNMP Card

Read the full advisory on CISA →