CVE-2025-41730 PUBLISHED

Stack-based buffer overflow via unsafe sscanf in check_account()

Assigner: CERTVDE
Reserved: 16.04.2025 Published: 10.12.2025 Updated: 18.12.2025

An unauthenticated remote attacker can abuse unsafe sscanf calls within the check_account() function to write arbitrary data into fixed-size stack buffers which leads to full device compromise.

Metrics

CVSS 3.1

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CVSS Score: 9.8

Attack Vector	Network	Scope	Unchanged
Attack Complexity	Low	Confidentiality Impact	High
Privileges Required	None	Integrity Impact	High
User Interaction	None	Availability Impact	High

CVSS 3.1

Product Status

Vendor	WAGO
Product	Indsutrial-Managed-Switches
Versions	Default: unaffected affected from 0.0.0 to 02.64 (excl.)

Credits

Daniel Hulliger from The Cyber-Defence Campus of armasuisse S+T finder

References

https://certvde.com/de/advisories/VDE-2025-095

Problem Types

CWE-121 Stack-based Buffer Overflow CWE