CNNVD-202507-309 Information

CNNVD ID

CNNVD-202507-309

Related CVE

CVE-2025-6072

• CNNVD Published: 2025-07-03

Description (Chinese)

ABB RMC-100是瑞士ABB公司的一个远程模块化控制器。能够管理自动化、液体和气体测量，大型生产和传输设施的资产数据集中。 ABB RMC-100存在安全漏洞，该漏洞源于栈缓冲区溢出，可能导致执行任意代码。以下版本受到影响：ABB RMC-100 2105457-045及之前版本和ABB RMC-100 LITE 2106229-016及之前版本。

Description (English)

ABB RMC-100 is a remote modularization controller for ABB Switzerland. The ability to manage automation, liquid and gas measurement, and centralization of asset data at large production and transmission facilities. There is a security gap in ABB RMC-100, which stems from the spilling of the silo buffer zone, which could lead to the implementation of any code. The following versions were affected: ABB RMC-100 2105457-045 et seq. and ABB RMC-100 LITE 2106229-016 et seq.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

阿西亚布朗勃法瑞有限公司

Published

2025-07-03

Last Modified

2026-02-24

References

https://search.abb.com/library/Download.aspx?DocumentID=9AKK108471A3623&LanguageCode=en&DocumentPartId=PDF&Action=Launch

Patch

https://new.abb.com/products/measurement-products/upstream-oil-and-gas/flow-computers-remote-controllers/flow-computers/rmc