Select region & language

Austria

German

Hungary

Hungarian

Romania

Romanian

Belgium

Dutch

French

Ireland

English

Russia

Russian

Italy

Italian

Serbia

Serbian

Croatia

Croatian

Latvia

Latvian

Slovakia

Slovakian

Czech Republic

Czech

Lithuania

Lithuanian

Slovenia

Slovenian

Denmark

Danish

Luxembourg

French

Spain

Spanish

Estonia

Estonian

Netherlands

Dutch

Sweden

Swedish

Finland

Finnish

Norway

Norwegian

France

French

Poland

Polish

Turkiye

Turkish

Germany

German

Portugal

Portuguese

United Kingdom

English

Greece

Greek

Argentina

Spanish

Costa Rica

Spanish

Mexico

Spanish

Aruba

Spanish

Dominican Republic

Spanish

Panama

Spanish

Bolivia

Spanish

Ecuador

Spanish

Peru

Spanish

Brazil

Portuguese

El Salvador

Spanish

Puerto Rico

Spanish

Guatemala

Spanish

United States of America

English

Chile

Spanish

Honduras

Spanish

Uruguay

Spanish

Colombia

Spanish

Kuwait

English

Qatar

English

Lebanon

English

Saudi Arabia

English

Bahrain

English

Madagascar

English

French

Botswana

English

French

South Africa

English

Cameroon

English

French

Mauritius

English

French

Tanzania

English

French

Côte d'Ivoire

English

French

United Arab Emirates

English

Israel

Hebrew

Oman

English

Jordan

English

Pakistan

English

Zimbabwe

English

French

Palestine

English

Australia

English

Kazakhstan

Russian

South Korea

Korean

Bangladesh

English

Malaysia

English

Sri Lanka

English

Taiwan (Chinese Taipei)

Chinese - Traditional

India

English

New Zealand

English

Thailand

English

Indonesia

English

Philippines

English

Vietnam

English

Japan

Japanese

Singapore

English

Cyber security alerts and notifications

We are committed to providing our customers with products, systems and services that clearly address cyber security. Proper and timely handling of cyber security incidents and software vulnerabilities is one important factor in helping our customers minimize risks associated with cyber security.

2022

2022-09-19: Cyber Security Notification - ABB Central Licensing System Vulnerabilities, impact on ABB Ability SCADAvantage

2022-08-25: Cyber Security Notification - UEFI vulnerability

2022-07-26: Cyber Security Advisory –  ABB Ability TM Operations Data Management Zenon Zenon Log Server file access control

2022-07-14: Cyber Security Advisory –  ABB Flow Computer and Remote Controllers Path Traversal Vulnerability in Totalflow TCP protocol can lead to root access

2022-06-21: Cyber Security Advisory –  ABB Relion REX640 Insufficient file access control

2022-06-14(**Updated 2022-08-23**): Cyber Security Advisory - Link Following Local Privilege Escalation Vulnerabilities in ABB Automation Builder, Drive Composer and Mint WorkBench 

2022-05-26: Cyber Security Advisory –  e-Design - Multiple vulnerabilities

2022-04-28(**Updated 2022-07-14**): Cyber Security Advisory – AC500 V3 CODESYS vulnerabilities

2022-04-26(**Updated 2022-07-26**): Cyber Security Notification – Industroyer2

2022-04-14: Cyber Security Notification - INCONTROLLER

2022-04-11: Cyber Security Advisory - Arctic Wireless Gateway Firewall vulnerability

2022-04-11: Cyber Security Advisory - ARM600 M2M Gateway NSS library and polkit vulnerabilities

2022-03-03: Cyber Security Advisory - B&R APROL A flaw in Chainsaw component of Log4j can lead to code execution

2022-02-25: Cyber Security Advisory - SECURITY - AC 800M MMS - Denial of Service vulnerability in MMS communication

2022-02-02: Cyber Security Advisory - SECURITY – Denial of Service Vulnerabilities in SPIET800 INFI-Net to Ethernet Transfer module and PNI800 S+ Ethernet communication interface module

2022-01-25: Cyber Security Advisory - SECURITY - Denial of Service Vulnerabilities in System 800xA, Symphony® Plus IEC 61850 communication stack

2022-01-24: Cyber Security Advisory - SECURITY - OPC Server for AC 800M - Remote Code Execution Vulnerability

2022-01-20(**Updated 2022-08-16**): Cyber Security Advisory - RCE through Project Upload from Target (“Evil PLC Attack”)

2022-01-17: Cyber Security Advisory - SECURITY - Wind River VxWorks Multiple Vulnerabilities - Impact on Melody controller PM877

2021

2021-12-16: Cyber Security Advisory - MMS File Transfer Vulnerability impact on Distribution Automation products

2021-12-15 (**Updated 2022-01-13**): Cyber Security Notification - Apache log4j vulnerabilities (Log4Shell) - impact on ABB products

2021-12-01: Cyber Security Advisory - OmniCore RobotWare Missing Authentication Vulnerability

2021-10-19: Cyber Security Advisory - Certificate verification vulnerability in Update Manager of PCM600 Engineering Tool

2021-09-22: Cyber Security Advisory - free@home System Access Point FW integrity check can be bypassed

2021-09-07: Cybersecurity Advisory - EIBPORT vulnerabilities 

2021-09-03 (**Updated 2021-09-09**): Cybersecurity Advisory - ABB Base Software for SoftControl Remote Code Execution vulnerability

2021-07-09: Cybersecurity Advisory - Denial of service vulnerability on B&R Automation Runtime webserver

2021-07-05: Cybersecurity Advisory - Denial of Service vulnerability in B&R Industrial Automation PROFINET IO Device

2021-07-05: Cybersecurity Advisory - Stack crash in B&R Industrial Automation X20 EthernetIP Adpater

2021-07-05: Cybersecurity Advisory - ControlTouch Cloud Service vulnerability

2021-06-21: Cybersecurity Advisory - CodeMeter vulnerabilities, impact on Automation Builder, Drive Application Builder and Virtual Drive

2021-06-03: Cybersecurity Advisory - Multiple Vulnerabilities in Automation Runtime NTP Service

2021-06-03: Cybersecurity Advisory - Amnesia:33 impact on B&R products

2021-05-06: Cybersecurity Advisory - AC 800PEC platform NAME:WRECK vulnerability

2021-05-06: Cybersecurity Advisory - Cassia Access Controller for ABB

2021-04-30: Cybersecurity Advisory - Denial-of-service vulnerability affecting multiple B&R products

2021-03-12: Cybersecurity Advisory - Denial of Service Vulnerability in ABB Relion 630 Series 61850 communication 

2021-02-12: Cybersecurity Advisory - CodeMeter vulnerabilities, impact on B&R products

2021-02-02: Cybersecurity Advisory - AC500 V2 Webserver vulnerability

2021-01-20: (**Updated 2021-01-21**) Cybersecurity Advisory - AC500 V2 vulnerability

2020

2020-12-15 (**Updated 2022-03-15**): Cybersecurity Advisory - ABB Central Licensing System Vulnerabilities, impact on Symphony® Plus, Composer Harmony, Composer Melody, Harmony OPC Server

2020-12-15: Cybersecurity Advisory - Multiple vulnerabilities in S+ Historian

2020-12-15: Cybersecurity Advisory - Multiple vulnerabilities in S+ Operations

2020-12-08: Cybersecurity Advisory - Arctic wireless gateway Firewall Configuration

2020-09-30: Cybersecurity Advisory - Multiple Vulnerabilities, impact on GateManager

2020-09-30: Cybersecurity Advisory - Multiple Vulnerabilities, impact on SiteManager and GateManager

2020-09-17: (**Updated 2020-10-15**) Cybersecurity Advisory - CodeMeter Vulnerabilities, impact on ABB Automation Builder 

2020-09-10: (**Updated 2022-05-23**) Cybersecurity Notification - CodeMeter Vulnerabilities, impact on ABB products

2020-09-10: Cybersecurity Advisory - CodeMeter Vulnerabilities, impact on ABB AC 800PEC platform

2020-09-10: (**Updated 2021-09-24**) Cybersecurity Advisory - CodeMeter Vulnerabilities, impact on ABB Ability(TM) Operations Data Management zenon

2020-09-10: (**Updated 2020-12-23**) Cybersecurity Advisory - CodeMeter Vulnerabilities, impact on ABB Drives applications

2020-08-12: Cybersecurity Advisory - B&R Automation Runtime TFTP Service DoS Vulnerability

2020-07-31: (**Updated 2021-08-27**) Cybersecurity Advisory - Ripple20 impact on Distribution Automation products

2020-07-15: (**Updated 2020-08-14**) Cybersecurity Notification - Ripple20 Vulnerabilities, impact on ABB products

2020-05-29: SECURITY WindRiver VxWorks IPNet Vulnerabilities impact on CI845

2020-05-25: Cybersecurity Advisory - WindRiver VxWorks IPNet Vulnerabilities, impact on FOX615 Multiservice-Multiplexer

2020-05-25: Cybersecurity Advisory - WindRiver VxWorks IPNet Vulnerabilities, impact on Relion 670, Relion 650, SAM600-IO Series

2020-05-25: Cybersecurity Advisory - WindRiver VxWorks IPNet Vulnerabilities, impact on AFS66x

2020-05-25: (**Updated 2020-05-26**) Cybersecurity Advisory - WindRiver VxWorks IPNet Vulnerabilities, impact on NSD570 Teleprotection Equipment

2020-05-25: (**Updated 2020-05-26**) Cybersecurity Advisory - WindRiver VxWorks IPNet Vulnerabilities, impact on ETL600 Power Line Carrier System

2020-05-25: Cybersecurity Advisory - WindRiver VxWorks IPNet Vulnerabilities, impact on REB500

2020-05-25: Cybersecurity Advisory - WindRiver VxWorks IPNet Vulnerabilities, impact on RTU500 series

2020-05-21: SECURITY ABB Device Library Wizard Information Disclosure Vulnerability (2PAA121681)

2020-04-22: UPS Adapter CS141 – Path traversal vulnerability

2020-04-21: Multiple vulnerabilities in B&R Automation Studio

2020-04-21: TPM-Fail vulnerability in several B&R products

2020-04-21 (**Updated 2022-08-16**): SECURITY ABB Central Licensing System Vulnerabilities, impact on System 800xA, Compact HMI and Control Builder Safe

2020-04-21 (**Updated 2021-07-01**): SECURITY Multiple Vulnerabilities in ABB Central Licensing System

2020-04-21 (**Updated 2021-10-19**): SECURITY Inter process communication vulnerability in System 800xA

2020-04-02 (**Updated 2021-07-01**): SECURITY System 800xA Weak File Permissions

2020-04-02: Vulnerabilities in Telephone Gateway TG/S 3.2

2020-04-02 (**Updated 2020-06-09**): SECURITY System 800xA Information Manager - Remote Code Execution

2020-04-02 (**Updated 2020-04-21**): SECURITY System 800xA Weak Registry Permissions

2020-02-20: Vulnerability in B&R Industrial Automation Automation Studio and Automation Runtime 

2020-02-12: Vulnerability in ABB Asset Suite - Direct Object Reference

2020-02-12: Vulnerabilities in ABB eSOMS

2019

2019-12-16: Cybersecurity Advisory - Multiple Vulnerabilities in ABB PB610 Panel Builder 600

2019-11-12: (**updated 2020-10-15**) Cybersecurity Advisory - Automation Builder 2.2 (and earlier), Drive Application Builder 1.0

2019-11-01: Cybersecurity Advisory - Power Generation Information Manager PGIM

2019-10-22: Vulnerabilities in Relion® 670 series and Relion® 650 series - OpenSSL

2019-10-22: Vulnerability in Relion® 650 series and Relion® 670 series - Terminal Reboot

2019-10-22: Vulnerability in Relion® 670 series - MMS Path Traversal

2019-10-22: Vulnerabilities in Relion® 650 series version 2.1 and Relion® 670 series version 2.1 - OpenSSL

2019-10-15: Vulnerability in UNO-DM - Improper Authentication

2019-10-11: Cybersecurity Advisory - WindRiver VxWorks IPNet Vulnerabilities, impact on AC 800PEC

2019-09-27: Vulnerability in Data Logger Web Server - Weak Session Management

2019-09-24: Cybersecurity Advisory - WindRiver VxWorks IPNet Vulnerabilities, impact on AC 800M

2019-07-30: Cybersecurity Notification - WindRiver VxWorks IPNet Vulnerabilities, impact on ABB Industrial Automation products

2019-07-30: Cybersecurity Notification - WindRiver VxWorks IPNet Vulnerabilities, impact on AC 800PEC

2019-07-30: Cybersecurity Notification - WindRiver VxWorks IPNet Vulnerabilities, impact on High Voltage Products

2019-07-30: Cybersecurity Notification - WindRiver VxWorks IPNet Vulnerabilities, impact on ABB Power Grids - Grid Automation products

2019-07-30: Cybersecurity Notification - WindRiver VxWorks IPNet Vulnerabilities, impact on ABB Robot Controller Software

2019-06-05: Vulnerabilities in ABB CP635 HMI

2019-06-05: Vulnerabilities in ABB PB610

2019-06-05: Vulnerabilities in ABB CP651 HMI