CoreSense™ HM and CoreSense™ M10 File Path Traversal Vulnerability

Plan PatchCVSS 7.13kxg200000r4801Apr 16, 2025

ABB

Attack path

Attack VectorLocal

Auth RequiredNone

ComplexityLow

User InteractionNone needed

Summary

A path traversal vulnerability in CoreSense HM and CoreSense M10 allows unauthenticated users to access restricted directories, potentially leading to complete system compromise and exposure of sensitive information.

What this means

What could happen

An attacker could read sensitive configuration files, credentials, or operational data stored on the device without authentication, potentially gaining the information needed to further compromise the system or plant network.

Who's at risk

Water authorities and utilities using ABB CoreSense HM monitoring systems or CoreSense M10 devices for industrial process monitoring and control. Impact is highest for organizations with these devices exposed to untrusted network segments or where local access is not strictly controlled.

How it could be exploited

An attacker with local filesystem access (or via a web interface if exposed) can craft a path traversal request using directory traversal sequences (e.g., ../) to navigate outside intended directories and access restricted files containing configuration or credentials.

Prerequisites

Local filesystem access or network access to the device's web/API interface
No authentication credentials required

No authentication requiredLow complexity attackAccess to restricted directories and sensitive dataAffects monitoring/control devices

Exploitability

Unlikely to be exploited — EPSS score 0.2%

Affected products (2)

2 with fix

ProductAffected VersionsFix Status

CoreSense™ HM<=2.3.1≤ 2.3.12.3.4

CoreSense™ M10<=1.4.1.12≤ 1.4.1.121.4.1.31

Remediation & Mitigation

0/4

Do now

0/2

HARDENINGRestrict local filesystem access to CoreSense devices to authorized personnel only

HARDENINGIf web/API interfaces are exposed, implement network access controls to limit connectivity to trusted engineering networks only

Schedule — requires maintenance window

0/2

Patching may require device reboot — plan for process interruption

HOTFIXUpdate CoreSense HM to version 2.3.4 or later

HOTFIXUpdate CoreSense M10 to version 1.4.1.31 or later

CVEs (1)

CVE-2025-3465

View full ABB PSIRT advisory

↑↓ Navigate · Esc Close

API: /api/v1/advisories/a44a8169-7c41-46b2-902e-645179bd6f99

Get OT security insights every Tuesday

Advisory breakdowns, a weekly summary, and incident analyses for the people actually defending OT environments. Free, no account required.