Resource Allocation Vulnerability in OPC-UA Server Used in PPT30
CVE-2025-11482

8.7HIGH

Key Information:

Vendor: B&r Industrial Automation Gmbh
Status: Ppt30 Operating System
Vendor: CVE Published:; 26 May 2026

🔔 Create B&r Industrial Automation Gmbh Vulnerability Alert

What is CVE-2025-11482?

An allocation of resources without limits or throttling has been identified in the OPC-UA Server utilized in PPT30 Operating System versions prior to 1.8.0. This vulnerability enables an unauthenticated network-based attacker to exploit the system, potentially causing permanent disruption for legitimate users, preventing them from interacting with the affected service.

Affected Version(s)

PPT30 Operating System 0 < 1.8.0

References

https://br-cws-assets.de-fra-1.linodeobjects.com/SA25P006...

CVSS V4

Score:

8.7

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 26, 2026
Vulnerability Reserved
Oct 8, 2025

CVE-2025-11482 Data

JSON