{"id":59491,"date":"2025-07-19T12:59:52","date_gmt":"2025-07-19T12:59:52","guid":{"rendered":""},"modified":"2025-08-30T08:49:30","modified_gmt":"2025-08-30T14:49:30","slug":"cve-2025-2521-memory-buffer-vulnerability-in-honeywell-experion-pks-and-onewireless-wdm","status":"publish","type":"post","link":"https:\/\/www.ameeba.com\/blog\/cve-2025-2521-memory-buffer-vulnerability-in-honeywell-experion-pks-and-onewireless-wdm\/","title":{"rendered":"CVE-2025-2521: Memory Buffer Vulnerability in Honeywell Experion PKS and OneWireless WDM<\/strong>"},"content":{"rendered":"

Overview<\/strong><\/p>\n

In the rapidly evolving field of cybersecurity, new vulnerabilities are continually being discovered and exploited. One recent vulnerability, identified as CVE-2025-2521, has been detected in Honeywell Experion PKS and OneWireless WDM. These systems are widely used in industrial control<\/a>, exposing a broad range of industries to potential attacks. The vulnerability lies in an overread buffer<\/a> in the Control Data Access (CDA) component, which could lead to remote code execution by a malicious actor.
\nThis vulnerability is particularly concerning due to its severe<\/a> impact and the wide range of affected products. The potential for system compromise or data leakage is a significant threat to the security and integrity of operations in affected<\/a> industries.<\/p>\n

Vulnerability Summary<\/strong><\/p>\n

CVE ID: CVE-2025-2521
\nSeverity: High, CVSS Score 8.6
\nAttack Vector: Network
\nPrivileges Required: None
\nUser Interaction: None
\nImpact: Potential system<\/a> compromise or data leakage<\/p>\n

Affected Products<\/strong><\/p>

\r\n

\r\n \r\n \"Ameeba\r\n <\/a>\r\n A new way to communicate\r\n <\/h2>\r\n\r\n

\r\n Ameeba Chat is built on encrypted identity, not personal profiles.\r\n <\/p>\r\n\r\n

\r\n Message, call, share files, and coordinate with identities kept separate.\r\n <\/p>\r\n\r\n