CVE-2025-11243 | Shelly Pro 4PM RPC Endpoint allocation of resources (icsa-25-322-02)

November 19, 2025 Yanac

A vulnerability, which was classified as critical, has been found in Shelly Pro 4PM. The affected element is an unknown function of the component RPC Endpoint. The manipulation leads to allocation of resources.

This vulnerability is documented as CVE-2025-11243. The attack requires being on the local network. There is not any exploit available.VulDB Recent EntriesRead More

CVE-2025-13395 | codehub666 94list up to 5831c8240e99a72b7d3508c79ef46ae4b96befe8 /function.php login sql injection (Issue 63)
CVE-2025-12056 | Shelly Pro 3EM Modbus out-of-bounds (icsa-25-322-03)