ABB Busch-Welcome 2 Wire Door Opener Actuator Flaw Could Let Attackers Unlock Buildings
CISA warns of an authentication bypass in ABB Busch-Welcome 2 Wire Door Opener Actuators that allows attackers with physical access to open doors and gates.
CISA has issued an advisory for CVE-2025-7705, an authentication bypass vulnerability affecting ABB's Busch-Welcome 2 Wire Door Opener Actuator. The flaw, which carries a CVSS score of 6.8, stems from active debug code left enabled by default—classified as CWE-489—that effectively allows an attacker with physical access to the device to unlock doors or gates without proper authorization.
The vulnerability impacts two specific product variants: the Switch Actuator 4 DU (part number -83330) and the Switch actuator, door/light 4 DU (part number -83330-500), across all firmware versions. Because these devices are deployed in commercial facilities worldwide—primarily in office buildings, apartment complexes, and restricted-access areas—the potential for unauthorized physical entry poses a serious security risk to both property and personnel.
The root cause is an active debug code feature that remains enabled by default, creating a compatibility mode that skips normal authentication checks. An attacker who can physically reach the actuator can exploit this bypass to trigger the door-opening mechanism without valid credentials. While the exploit requires physical proximity, the ease of gaining entry into secured buildings makes this vulnerability particularly concerning for facility managers and security teams.
ABB has released a straightforward mitigation that does not require a firmware update. The fix involves three steps performed on-site: first, toggle the mode switch on the affected product from "Door-Open" to "Light" mode; wait one second; then switch back to "Door-Open" mode. Finally, perform a full power reset by cycling mains power off and on. During the subsequent boot-up, the system recalibrates itself and automatically corrects the misconfiguration, disabling the debug code path.
CISA recommends that all organizations using these ABB actuators apply the mitigation at the earliest convenience. The agency also advises broader defensive measures including minimizing network exposure for control system devices, isolating building-automation networks behind firewalls, and using VPNs for any required remote access. Organizations should also review the Busch-Welcome system handbook for security installation guidance.
The advisory was published as part of CISA's regular ICS alert program, with ABB PSIRT having reported the vulnerability to CISA. No active exploitation has been reported at the time of publication, but CISA notes that the worldwide deployment of these devices in commercial facilities makes proactive mitigation essential. This advisory joins a growing list of CISA-issued alerts targeting physical access control systems, underscoring the increasing focus on cyber-physical convergence in critical infrastructure protection.