ABB AC500 V3 Stack Buffer Overflow in Cryptographic Message Syntax
Summary
ABB has released a patch for a critical vulnerability in their AC500 V3 industrial control system firmware. This stack buffer overflow flaw, identified as CVE-2025-15467, allows an attacker to send a specially crafted message that can lead to a crash, denial-of-service, or potentially remote code execution.
IFF Assessment
This vulnerability allows for potential remote code execution and denial-of-service in critical infrastructure, posing a significant risk to defenders.
Severity
The CVSS score of 9.8 reflects the critical nature of this vulnerability, which allows for potential remote code execution and denial-of-service without requiring authentication due to the overflow occurring before integrity checks.
Defender Context
Defenders should prioritize patching ABB AC500 V3 systems to mitigate the risk of exploitation. Monitoring network traffic for anomalous CMS (Auth)EnvelopedData structures could help detect attempted attacks. The fact that exploitation is possible before authentication makes this a particularly dangerous threat.