[Control systems] ABB security advisory (AV25-648)

Serial number: AV25-648
Date: October 7, 2025

On October 7, 2025, ABB published a security advisory to address a vulnerability in the following products:

• EIBPORT V3 KNX – versions prior to 3.9.2
• EIBPORT V3 KNX GSM – versions prior to 3.9.2

The Cyber Centre encourages users and administrators to review the provided web links and perform the suggested mitigations.

• EIBPORT Reflected XSS - CVE ID: CVE-2021-22291
• ABB Cyber security alerts and notifications