CVE-2025-11482 | THREATINT

Description

An Allocation of Resources Without Limits or Throttling vulnerability in the OPC-UA Server used in PPT30 Operating System versions before 1.8.0 may be used by an unauthenticated network-based attacker to permanently prevent legitimate users from interacting with the service.

PUBLISHED Reserved 2025-10-08 | Published 2026-05-26 | Updated 2026-05-26 | Assigner ABB

HIGH: 7.5CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

HIGH: 8.7CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

Problem types

CWE-770 Allocation of resources without limits or throttling

Product status

Default status

unaffected

Any version before 1.8.0

affected

References

br-cws-assets.de-fra-1.linodeobjects.com/...006-0eec719c.pdf

cve.org (CVE-2025-11482)

nvd.nist.gov (CVE-2025-11482)

Download JSON