High severity8.0NVD Advisory· Published Jun 3, 2026· Updated Jun 4, 2026
CVE-2025-14773
CVE-2025-14773
Description
Improper neutralization of input during web page generation ('cross-site scripting') vulnerability in ABB T-MAC Plus.
This issue affects T-MAC Plus: 4.0-24.
Affected products
2cpe:2.3:a:abb:t-mac_plus:4.0-24:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:abb:t-mac_plus:4.0-24:*:*:*:*:*:*:*
- (no CPE)range: <=4.0-24
Patches
Vulnerability mechanics
References
1- search.abb.com/library/Download.aspxnvdMitigationVendor Advisory
News mentions
1- ABB T-MAC PlusCISA ICS Advisories