exploitDog

CVE-2024-25366

Опубликовано: 20 фев. 2024

Источник: nvd

CVSS3: 6.2

EPSS Низкий

Описание

Buffer Overflow vulnerability in mz-automation.de libiec61859 v.1.4.0 allows a remote attacker to cause a denial of service via the mmsServer_handleGetNameListRequest function to the mms_getnamelist_service component.

Ссылки

https://github.com/mz-automation/libiec61850
Product
https://github.com/mz-automation/libiec61850/issues/492
Exploit
Issue Tracking
https://www.mz-automation.de/
Product
https://github.com/mz-automation/libiec61850
Product
https://github.com/mz-automation/libiec61850/issues/492
Exploit
Issue Tracking
https://www.mz-automation.de/
Product

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:mz-automation:libiec61850:1.4.0:*:*:*:*:*:*:*

EPSS

Процентиль: 72%

0.00714

Низкий

6.2 Medium

CVSS3

Дефекты

CWE-190

Связанные уязвимости

GHSA-4g72-g685-8cc9

CVSS3: 6.2

github

почти 2 года назад

Buffer Overflow vulnerability in mz-automation.de libiec61859 v.1.4.0 allows a remote attacker to cause a denial of service via the mmsServer_handleGetNameListRequest function to the mms_getnamelist_service component.

EPSS

Процентиль: 72%

0.00714

Низкий

6.2 Medium

CVSS3

Дефекты

CWE-190