CVE-2025-1059

Name of the Vulnerable Software and Affected Versions Schneider Electric - ASCO 5310 Single-Channel Remote Annunciator versions all

Description A vulnerability exists that could cause communications to stop when malicious packets are sent to the webserver of the device. This issue is related to the allocation of resources without limits or throttling.

Recommendations For all versions, consider restricting access to the webserver to minimize the risk of exploitation until a patch is available. As a temporary workaround, consider implementing rate limiting or IP blocking to prevent malicious packets from being sent to the device.