CVE-2025-6072

CWE-121Stack-based Buffer OverflowCWE-6654 documents4 sources
Severity
8.2HIGH
EPSS
0.1%
top 73.92%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
ABB Rmc-100ABB Rmc-100 Lite
Timeline
PublishedJul 3

Description

Stack-based Buffer Overflow vulnerability in ABB RMC-100, ABB RMC-100 LITE. When the REST interface is enabled by the user, and an attacker gains access to the control network, and CVE-2025-6074 is exploited, the attacker can use the JSON configuration to overflow the date of expiration field.This issue affects RMC-100: from 2105457-043 through 2105457-045; RMC-100 LITE: from 2106229-015 through 2106229-016.

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

Affected Packages2 packages

CVEListV5abb/rmc-100_lite2106229-0152106229-016
CVEListV5abb/rmc-1002105457-0432105457-045

🔴Vulnerability Details

2
GHSA
GHSA-7896-447p-7w4j: Stack-based Buffer Overflow vulnerability in ABB RMC-100, ABB RMC-100 LITE2025-07-03
CVEList
Stack Buffer Overflow in MQTTCore2025-07-03
CVE-2025-6072 (HIGH CVSS 8.2) | Stack-based Buffer Overflow vulnera | cvebase.io