CVE-2025-10504 is a heap-based buffer overflow vulnerability classified under CWE-122, found in ABB Terra AC wallbox devices up to firmware version 1.8.33. This vulnerability arises from improper handling of heap memory, where an attacker with authenticated, high-privilege remote access can trigger a buffer overflow condition. Such a condition can corrupt adjacent memory, potentially leading to application crashes, denial of service, or manipulation of device behavior compromising integrity. The CVSS 4.0 vector indicates that the attack vector is adjacent network (AV:A), with low attack complexity (AC:L), no user interaction (UI:N), and no privileges required for attack initiation (PR:H), meaning the attacker must have high privileges but no user interaction is needed. The vulnerability impacts availability and integrity but not confidentiality. No public exploits or patches are currently available, and the vulnerability was published on September 29, 2025. ABB Terra AC wallboxes are widely used in electric vehicle charging infrastructure, making this vulnerability relevant to critical energy and transportation sectors. The lack of known exploits suggests limited current risk, but the potential impact on EV charging availability and device integrity warrants proactive mitigation.

For European organizations, this vulnerability could disrupt electric vehicle charging infrastructure, leading to denial of service or compromised device integrity. This can affect fleet operations, public charging stations, and private installations, potentially causing operational downtime and financial losses. The integrity impact may allow attackers to manipulate charging parameters or device behavior, risking safety and reliability. Given the increasing reliance on EV infrastructure in Europe, especially in countries pushing for green energy and EV adoption, this vulnerability could have cascading effects on transportation and energy sectors. The requirement for high privileges limits exploitation to insiders or attackers who have already compromised credentials, reducing broad external threat risk but increasing concern for targeted attacks or insider threats. The absence of confidentiality impact reduces risks related to data leakage but does not eliminate operational risks.

European organizations should implement strict network segmentation to isolate ABB Terra AC wallboxes from general network access, limiting exposure to high-privilege users only. Employ strong authentication and access controls to prevent unauthorized privilege escalation. Monitor device logs and network traffic for anomalous activity indicative of exploitation attempts. Since no patches are currently available, coordinate with ABB for timely updates and apply firmware upgrades as soon as they are released. Conduct regular security audits and vulnerability assessments on EV charging infrastructure. Implement intrusion detection systems tailored to detect buffer overflow exploitation patterns. Additionally, consider deploying endpoint protection solutions capable of detecting memory corruption attempts. Establish incident response plans specifically addressing EV infrastructure compromise scenarios.