ABB CoreSense Path Traversal Vulnerability in HM and M10 Products

Vulnerability

A path traversal vulnerability has been identified in ABB CoreSense HM versions through 2.3.1 and CoreSense M10 versions through 1.4.1.12. This vulnerability arises from improper limitations on pathnames, allowing for traversal to restricted directories.

Impact

Exploitation of this vulnerability could lead to unauthorized access to restricted directories, potentially allowing for the manipulation or exposure of sensitive files.

Added: Oct 20, 2025, 6:23 PM

Updated: Oct 20, 2025, 6:23 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

7.4

remediation

0.0

relevance

0.8

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

7.4

remediation

0.0

relevance

0.8

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

ABB CoreSense Path Traversal Vulnerability in HM and M10 Products

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating