How to fix CVE-2025-2521?

Within 24 hours: Identify and inventory all affected Experion PKS and OneWireless WDM systems in your environment using the provided product and version lists. Within 7 days: Implement network segmentation to restrict unauthorized access to affected systems and increase monitoring for suspicious activities targeting CDA components. Within 30 days: Apply available patches (520.2 TCU9 HF1, 530.1 TCU3 HF1, OneWireless 322.5 and 331.1) during scheduled maintenance windows, prioritizing systems in critical operational roles.

Is Honeywell affected by CVE-2025-2521?

A critical memory buffer vulnerability (CVE-2025-2521) affects Honeywell Experion PKS and OneWireless WDM systems used in industrial control environments, with potential for remote code execution.

CVE-2025-2521

EUVD-2025-21067 HIGH

2025-07-10 [email protected]

8.6

CVSS 3.1

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

Low

Integrity

Low

Availability

High

Lifecycle Timeline

EUVD ID Assigned

Mar 16, 2026 - 06:52 euvd

EUVD-2025-21067

Analysis Generated

Mar 16, 2026 - 06:52 vuln.today

CVE Published

Jul 10, 2025 - 21:15 nvd

HIGH 8.6

Description

The Honeywell Experion PKS and OneWireless WDM contains a Memory Buffer vulnerability in the component Control Data Access (CDA). An attacker could potentially exploit this vulnerability, leading to an Overread Buffers, which could result in improper index validation against buffer borders leading to remote code execution. Honeywell recommends updating to the most recent version of Honeywell Experion PKS: 520.2 TCU9 HF1 and 530.1 TCU3 HF1 and OneWireless: 322.5 and 331.1. The affected Experion PKS products are C300 PCNT02, C300 PCNT05, FIM4, FIM8, UOC, CN100, HCA, C300PM, and C200E. The Experion PKS versions affected are from 520.1 through 520.2 TCU9 and from 530 through 530 TCU3.The OneWireless WDM affected versions are 322.1 through 322.4 and 330.1 through 330.3.

Analysis

A remote code execution vulnerability in Honeywell Experion PKS and OneWireless WDM (CVSS 8.6). High severity vulnerability requiring prompt remediation.

Technical Context

CWE-119 (Buffer Overflow). CVSS 8.6 indicates high severity. Affects Honeywell Experion PKS and OneWireless WDM.

Affected Products

['Honeywell Experion PKS and OneWireless WDM']

Remediation

Monitor vendor channels for patch availability. Consider network segmentation to limit exposure if patching is delayed.

Priority Score

Low Medium High Critical

KEV: 0

EPSS: +0.4

CVSS: +43

POC: 0

CVE-2025-2521 vulnerability details – vuln.today

Back

CVE-2025-2521

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Technical Context

Affected Products

Remediation

Priority Score

Share

CVE-2025-2521

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Technical Context

Affected Products

Remediation

Priority Score

Share

External POC / Exploit Code