CVE-2025-7064

MEDIUM

Freelance Security Lock – Access to Windows OS

Title source: cna

Description

Authentication bypass by primary weakness vulnerability in ABB Freelance. This issue affects Freelance: through 2013, 2013 SP1, 2016, 2016 SP1, 2019, 2019 SP1, 2019 SP1 FP1, 2024.

References (1)

Core 1

Core References

https://search.abb.com/library/Download.aspx?DocumentID=7PAA020361&LanguageCode=en&DocumentPartId=&Action=Launch

Scores

CVSS v3 6.6

EPSS 0.0012

EPSS Percentile 1.9%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-305

Status published

Products (8)

ABB/Freelance < 2013

ABB/Freelance 2013 SP1

ABB/Freelance 2016

ABB/Freelance 2016 SP1

ABB/Freelance 2019

ABB/Freelance 2019 SP1

ABB/Freelance 2019 SP1 FP1

ABB/Freelance 2024

Published Jun 11, 2026

Tracked Since Jun 11, 2026