CVE-2025-13051

CRITICAL

ABP <2.0.7.9050 - Authenticated Privilege Escalation

Title source: llm

Description

When the service of ABP and AES is installed in a directory writable by non-administrative users, an attacker can replace or plant a DLL with the same name as one loaded by the service. Upon service restart, the malicious DLL is loaded and executed under the LocalSystem account, resulting in unauthorized code execution with elevated privileges. This issue affects ABP and AES: from ABP 2.0 through 2.0.7.9050, from AES 1.0 through 1.0.6.8290.

References (1)

[Various Sources] https://www.asustor.com/security/security_advisory_detail?id=48

Scores

CVSS v4 9.3

EPSS 0.0002

EPSS Percentile 5.9%

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-427

Status published

Products (2)

ASUSTOR/ABP and AES ABP 2.0 - 2.0.7.9050

ASUSTOR/ABP and AES AES 1.0 - 1.0.6.8290

Published Nov 19, 2025

Tracked Since Feb 18, 2026