CVE-2025-12056 | Shelly Pro 3EM Modbus out-of-bounds (icsa-25-322-03)

November 19, 2025 Yanac

A vulnerability classified as critical was found in Shelly Pro 3EM. Impacted is an unknown function of the component Modbus Handler. Executing manipulation can lead to out-of-bounds read.

This vulnerability is registered as CVE-2025-12056. The attack requires access to the local network. No exploit is available.VulDB Recent EntriesRead More

CVE-2025-11243 | Shelly Pro 4PM RPC Endpoint allocation of resources (icsa-25-322-02)
CVE-2025-12484 | RafflePress Giveaways and Contests Plugin up to 1.12.19 on WordPress Username cross site scripting