Cyber Posture

CVE-2024-48852

Critical

Published: 29 January 2025

Published
29 January 2025
Modified
15 April 2026
KEV Added
Patch
CVSS Score 9.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H
EPSS Score 0.0270 86.0th percentile
Risk Priority 20 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2024-48852 is a critical-severity Insertion of Sensitive Information into Log File (CWE-532) vulnerability in Abb (inferred from references). Its CVSS base score is 9.4 (Critical).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked in the top 14.0% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.

The strongest mitigations our analysis identified are NIST 800-53 AU-13 (Monitoring for Information Disclosure) and AU-9 (Protection of Audit Information).

Threat & Defense at a Glance

What attackers do: exploitation maps to Exploit Public-Facing Application (T1190). What defenders deploy: see the NIST 800-53 controls recommended below.
Threat & Defense Details

Mitigating Controls (NIST 800-53 r5)AI

SI-2 Flaw Remediation good match
prevent

Directly remediates the Insertion of Sensitive Information into Log File flaw in FLEXON <=9.3.4 by identifying, reporting, and patching the vulnerability.

AU-9 Protection of Audit Information good match
prevent

Protects audit log files containing sensitive information from unauthorized access and disclosure through HTTPS endpoints.

AU-13 Monitoring for Information Disclosure good match
detect

Monitors system activity for unauthorized disclosure of sensitive information via improperly accessible log files.

MITRE ATT&CK Enterprise TechniquesAI

T1190 Exploit Public-Facing Application Initial Access
Adversaries may attempt to exploit a weakness in an Internet-facing host or system to initially access a network.
attack.mitre.org →
Why these techniques?

Unauthenticated network disclosure of sensitive logs via HTTPS in a public-facing application directly matches exploitation of exposed services.

Confidence: HIGH · MITRE ATT&CK Enterprise v18.1

NVD Description

Insertion of Sensitive Information into Log File vulnerability observed in FLEXON. Some information may be improperly disclosed through https access. This issue affects FLXEON through <= 9.3.4.

Deeper analysisAI

CVE-2024-48852 is an Insertion of Sensitive Information into Log File vulnerability (CWE-532) observed in FLEXON, affecting versions through <= 9.3.4. The flaw enables some information to be improperly disclosed through HTTPS access, as detailed in the CVE description published on 2025-01-29.

The vulnerability carries a CVSS v3.1 base score of 9.4 (AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H), indicating it can be exploited over the network by unauthenticated attackers requiring low complexity and no user interaction. Successful exploitation results in low impact to confidentiality, but high impact to integrity and availability.

Mitigation guidance is provided in the ABB advisory document accessible at https://search.abb.com/library/Download.aspx?DocumentID=9AKK108470A5684&LanguageCode=en&DocumentPartId=PDF&Action=Launch.

Details

CWE(s)
CWE-532

Affected Products

Abb
inferred from references and description; NVD did not file a CPE for this CVE

CVEs Like This One

CVE-2026-25813Shared CWE-532
CVE-2025-66236Shared CWE-532
CVE-2026-22778Shared CWE-532
CVE-2026-24308Shared CWE-532
CVE-2026-32982Shared CWE-532
CVE-2025-24556Shared CWE-532
CVE-2026-22782Shared CWE-532
CVE-2025-11008Shared CWE-532
CVE-2024-7577Shared CWE-532
CVE-2025-1075Shared CWE-532

References