Heap-based Buffer Overflow in ABB Terra AC Wallbox Products
CVE-2025-5517

6.1MEDIUM

Key Information:

Vendor: Abb
Status: Terra Ac Wallbox (ul40/80a); Terra Ac Wallbox (ul32a); Terra Ac Wallbox (mid/ Ce) -terra Ac Mid; Terra Ac Wallbox (mid/ Ce) -terra Ac Juno Ce
Vendor: CVE Published:; 20 October 2025

What is CVE-2025-5517?

A heap-based buffer overflow vulnerability has been identified in multiple models of ABB's Terra AC wallboxes, compromising device integrity and exposing users to potential security risks. This vulnerability allows an attacker to exploit memory allocation errors, which can lead to arbitrary code execution, denial of service, or unauthorized access. The issue affects specific versions across various Terra AC wallbox models, necessitating prompt updates to secure affected devices.

Affected Version(s)

Terra AC wallbox (JP) 0 <= 1.8.2

Terra AC wallbox (MID/ CE) -Terra AC Juno CE 0 <= 1.8.32

Terra AC wallbox (MID/ CE) -Terra AC MID 0 <= 1.8.32

References

https://search.abb.com/library/Download.aspx?DocumentID=9...

CVSS V4

Score:

6.1

Severity:

MEDIUM

Confidentiality:

None

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 20, 2025
Vulnerability Reserved
Jun 3, 2025

Credit

ABB also acknowledges and thanks Itai Shmueli from Saiflow who also responsibly disclosed these vulnerabilities and provided valuable input on product improvements.

JSON

Abb

What is CVE-2025-5517?

Affected Version(s)

References

CVSS V4

Timeline

Credit