Unrestricted File Access in ABB T-MAC Plus Platform

CVE-2025-14771 is a critical file access vulnerability (CWE-552) affecting ABB T-MAC Plus version 4.0-24, where files and directories are accessible to unauthorized external parties. This vulnerability carries a CVSS score of 9.9, placing it in the critical severity category. ABB T-MAC Plus is widely deployed in industrial automation and control environments, making this a high-impact issue for manufacturing, utilities, and critical infrastructure operators. The unrestricted access to sensitive files could enable attackers to extract configuration data, credentials, system information, or other proprietary details that could be leveraged for further compromise.

While this specific CVE doesn't map directly to MITRE ATT&CK techniques in its public disclosure, the underlying attack pattern—unauthorized file enumeration and data exfiltration—aligns with reconnaissance and credential access tactics. Casky's AI-driven analysis would identify suspicious file system access patterns, unusual directory traversal attempts, and anomalous data retrieval activities that precede successful exploitation. Although currently no Casky skills directly address this vulnerability, practitioners using the platform would benefit from mapping this CVE against their 754 available security skills to identify related defensive controls around file permissions, access controls, and network segmentation that could mitigate similar weaknesses in their ABB deployments and other control systems.