216.73.217.22

CVE-2025-6073

· Published 03/07/2025 17:15 · Modified 03/07/2025 17:15

Labels: CVE-2025-6073 2025-07-03CVE-2025-6073CWE-121[email protected]

Essential information

Published
03/07/2025 17:15
Modified
03/07/2025 17:15
Author
Creator
CVSS
8.2 HIGH (v3) 8.2 HIGH (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

Stack-based Buffer Overflow vulnerability in ABB RMC-100, ABB RMC-100 LITE. When the REST interface is enabled by the user, and an attacker gains access to the control network, and user/password broker authentication is enabled, and CVE-2025-6074 is exploited, the attacker can overflow the buffer for username or password. This issue affects RMC-100: from 2105457-043 through 2105457-045; RMC-100 LITE: from 2106229-015 through 2106229-016.

NVD status

Status
Received — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
abb / rmc-100 cpe:2.3:a:abb:rmc-100:2105457-043-2105457-045:*:*:*:*:*:*:*
abb / rmc-100 lite cpe:2.3:a:abb:rmc-100_lite:2106229-015-2106229-016:*:*:*:*:*:*:*

References