cbcvebase.
CVE-2025-41649
published 2025-05-27

CVE-2025-41649: An unauthenticated remote attacker can exploit insufficient input validation to write data beyond the bounds of a buffer, potentially leading to a…

PriorityP344high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
EPSS
0.40%
32.3th percentile
An unauthenticated remote attacker can exploit insufficient input validation to write data beyond the bounds of a buffer, potentially leading to a denial-of-service condition for the devices.

Affected

13 ranges
VendorProductVersion rangeFixed in
weidmuellerie-sw-pl10m-3gt-7tx>= 0.0.0 < 3.3.343.3.34
weidmuellerie-sw-pl10mt-3gt-7tx>= 0.0.0 < 3.3.343.3.34
weidmuellerie-sw-pl16m-16tx>= 0.0.0 < 3.4.323.4.32
weidmuellerie-sw-pl16mt-16tx>= 0.0.0 < 3.4.323.4.32
weidmuellerie-sw-pl18m-2gc-16tx>= 0.0.0 < 3.4.403.4.40
weidmuellerie-sw-pl18mt-2gc-16tx>= 0.0.0 < 3.4.403.4.40
weidmuellerie-sw-vl05m-5tx>= 0.0.0 < 3.6.323.6.32
weidmuellerie-sw-vl05mt-5tx>= 0.0.0 < 3.6.323.6.32
weidmuellerie-sw-vl08mt-5tx-1sc-2scs>= 0.0.0 < 3.5.363.5.36
weidmuellerie-sw-vl08mt-6tx-2sc>= 0.0.0 < 3.5.363.5.36
weidmuellerie-sw-vl08mt-6tx-2scs>= 0.0.0 < 3.5.363.5.36
weidmuellerie-sw-vl08mt-6tx-2st>= 0.0.0 < 3.5.363.5.36
weidmuellerie-sw-vl08mt-8tx>= 0.0.0 < 3.5.363.5.36
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.