Insecure password hashing in ABB FLXeon

Successful exploitation can allow an attacker who obtains access to the stored password hashes or underlying filesystem data to crack credentials offline significantly more efficiently than if modern password hashing with strong unique salts were used. Recovery of valid credentials could enable unauthorized access to the affected device and facilitate further compromise. In the broader advisory context, successful exploitation of vulnerabilities in this product family could contribute to remote takeover of the device, arbitrary code execution, or device disruption, but for CVE-2025-10205 specifically the direct impact supported by the provided content is exposure of password material and increased likelihood of credential compromise.

Disconnect FLXeon products that are directly exposed to the Internet, including exposure through NAT port forwarding. Restrict access through network segmentation and strong physical/network controls. Use secure remote access methods only, such as properly configured and fully updated VPNs. Because the issue involves weak password hash storage, organizations should also rotate credentials stored or used on affected devices after remediation if compromise is suspected.

Upgrade ABB FLXeon devices to the latest firmware version recommended by ABB. The provided advisory context states ABB recommends upgrading all FLXeon products to the latest firmware and removing direct Internet exposure. Where vendor fixes are available, they should be applied across affected FBXi, FBVi, FBTi, and CBXi devices running version 9.3.5 or earlier.