CVE-2025-1059

Summary

CWE-770: Allocation of Resources Without Limits or Throttling vulnerability exists that could cause communications to stop when malicious packets are sent to the webserver of the device.

Affected Software

VendorProductVersion RangeStatus
Schneider ElectricASCO 5310 Single-Channel Remote AnnunciatorAll versionsaffected
Schneider ElectricASCO 5350 Eight Channel Remote AnnunciatorAll versionsaffected

Weaknesses

  • CWE-770: CWE-770 Allocation of Resources Without Limits or Throttling

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References