High severity7.1NVD Advisory· Published Oct 20, 2025· Updated Apr 15, 2026
CVE-2025-3465
CVE-2025-3465
Description
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in ABB CoreSense™ HM, ABB CoreSense™ M10.This issue affects CoreSense™ HM: through 2.3.1; CoreSense™ M10: through 1.4.1.12.
Affected products
1- Range: <=2.3.1
Patches
Vulnerability mechanics
References
1News mentions
1- ABB CoreSense HM and CoreSense M10CISA ICS Advisories