Buffer Overflow Vulnerability in Bluetooth and RS-232 Interfaces Affecting a Vendor's Product
CVE-2025-3496

7.5HIGH

Key Information:

Vendor: Auma Riester
Status: Ac1.2; Mec 03.01; Profox; Sgx/svx
Vendor: CVE Published:; 12 May 2025

🔔 Create Auma Riester Vulnerability Alert

What is CVE-2025-3496?

A buffer overflow vulnerability exists that allows an unauthenticated remote attacker to exploit the Bluetooth or RS-232 interfaces. This exploitation can lead to unexpected behavior of the affected product or even result in a denial-of-service (DoS) condition. It is crucial for users to ensure that their systems are patched and secure from potential threats utilizing this vulnerability.

Affected Version(s)

AC1.2 06.00.00 < 06.09.04

MEC 03.01 0 < 01.02.00

PROFOX 0 < 01-01.10.00

References

https://cert.vde.com/en/advisories/VDE-2025-026

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 12, 2025
Vulnerability Reserved
Apr 10, 2025

Credit

Dennis Schaefer from ONEKEY GmbH

JSON