exploitDog

CVE-2019-19930

Опубликовано: 23 дек. 2019

Источник: nvd

CVSS3: 6.5

CVSS2: 4.3

EPSS Низкий

Описание

In libIEC61850 1.4.0, MmsValue_newOctetString in mms/iso_mms/common/mms_value.c has an integer signedness error that can lead to an attempted excessive memory allocation.

Ссылки

https://github.com/mz-automation/libiec61850/issues/193
Exploit
Third Party Advisory
https://github.com/mz-automation/libiec61850/issues/193
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:mz-automation:libiec61850:1.4.0:*:*:*:*:*:*:*

EPSS

Процентиль: 62%

0.00436

Низкий

6.5 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-190

Связанные уязвимости

GHSA-82ch-g5h5-7x39

github

больше 3 лет назад

In libIEC61850 1.4.0, MmsValue_newOctetString in mms/iso_mms/common/mms_value.c has an integer signedness error that can lead to an attempted excessive memory allocation.

EPSS

Процентиль: 62%

0.00436

Низкий

6.5 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-190