CVE-2025-32404

Name of the Vulnerable Software and Affected Versions RT-Labs P-Net versions 1.0.1 and earlier

Description An out-of-bounds write in the library allows an attacker to corrupt the memory of IO devices by sending a malicious RPC packet. This issue can be exploited by sending a specifically crafted packet to the affected devices.

Recommendations For RT-Labs P-Net versions 1.0.1 and earlier, consider restricting access to the RPC endpoint until a patch is available. As a temporary workaround, avoid using the library to handle RPC packets from untrusted sources. At the moment, there is no information about a newer version that contains a fix for this vulnerability.