Описание
A null pointer dereference vulnerability exists in airpig2011 IEC104 thru Commit be6d841 (2019-07-08). When multiple threads enqueue elements concurrently via IEC10X_PrioEnQueue, the function may dereference a null or freed queue pointer, resulting in a segmentation fault and potential denial-of-service.
Ссылки
- ExploitIssue Tracking
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 2019-07-08 (включая)
cpe:2.3:a:airpig2011:iec104:*:*:*:*:*:*:*:*
EPSS
Процентиль: 22%
0.00072
Низкий
7.5 High
CVSS3
Дефекты
CWE-476
Связанные уязвимости
CVSS3: 7.5
github
3 месяца назад
A null pointer dereference vulnerability exists in airpig2011 IEC104 thru Commit be6d841 (2019-07-08). When multiple threads enqueue elements concurrently via IEC10X_PrioEnQueue, the function may dereference a null or freed queue pointer, resulting in a segmentation fault and potential denial-of-service.
EPSS
Процентиль: 22%
0.00072
Низкий
7.5 High
CVSS3
Дефекты
CWE-476