High
CVSS 7.5
Overview
A Heap-based buffer overflow vulnerability in the SMA100 series web interface allows remote, unauthenticated attacker to cause Denial of Service (DoS) or potentially results in code execution.
CVE-2025-40597
A Heap-based buffer overflow vulnerability in the SMA100 series web interface al...
Risk analysis
This vulnerability is rated 🟠 HIGH.
- CVSS: 7.5 (HIGH)
- Detected tags: buffer, dos, rce (tag impact: VERY HIGH)
Recommended actions:
- Rate limiting, resource quotas and circuit breakers.
- Patch/upgrade immediately (remote code execution).
- Reduce exposure (WAF/segmentation), minimize attack surface.
- Enforce authentication/authorization; reduce default endpoint exposure.