CVE-2025-0657

CVSS v4.0

8.8

High

Vector

AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:L/VA:L/SC:N/SI:N/SA:N

Name of the Vulnerable Software and Affected Versions Automated Logic and Carrier i-Vu Gen5 router version drv gen5 106-01-2380

Description A flaw exists in Automated Logic and Carrier i-Vu Gen5 routers using driver version drv gen5 106-01-2380. Sending malformed packets through a BACnet MS/TP network can cause the devices to enter a fault state, requiring a manual power cycle to restore network connectivity.

Recommendations Update to a newer driver version to address this issue.

Fix

Improper Validation of Array Index

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-129CWE-248

Related Identifiers

CVE-2025-0657

Affected Products

Automated Logic I-Vu Gen5 Router

I-Vu Gen5 Router

CVE-2025-0657

Weakness Enumeration

Related Identifiers

Affected Products

References · 5