5 matches found
Researchers Uncover Major Security Vulnerabilities in Industrial MMS Protocol Libraries
Details have emerged about multiple security vulnerabilities in two implementations of the Manufacturing Message Specification MMS protocol that, if successfully exploited, could have severe impacts in industrial environments. "The vulnerabilities could allow an attacker to crash an industrial...
CVE-2022-2970
MZ Automation's libIEC61850 versions 1.4 and prior; version 1.5 prior to commit a3b04b7bc4872a5a39e5de3fdc5fbde52c09e10e does not sanitize input before memcpy is used, which could allow an attacker to crash the device or remotely execute arbitrary code...
CVE-2022-2970
CVE-2022-2970 affects MZ Automation’s libIEC61850 (versions 1.4 and prior; 1.5 prior to commit a3b04b7bc4872a5a39e5de3fdc5fbde52c09e10e). The issue is a stack-based overflow caused by not sanitizing input before memcpy, which could crash a device or enable remote code execution. Affected products...
CVE-2022-2970 MZ Automation libIEC61850 Stack-Based Buffer Overflow
MZ Automation's libIEC61850 versions 1.4 and prior; version 1.5 prior to commit a3b04b7bc4872a5a39e5de3fdc5fbde52c09e10e does not sanitize input before memcpy is used, which could allow an attacker to crash the device or remotely execute arbitrary code...
CVE-2022-2970
creationtimestamp| type| source ---|---|--- 2022-09-09 18:30:04+00:00| seen| https://t.me/truesecator/3399 2022-09-09 19:20:23+00:00| seen| https://t.me/icscert/596 2022-09-23 20:43:37+00:00| seen| https://t.me/cibsecurity/50351...