EUVD-2022-24630

Malicious code in bioql PyPI...

Input validation

A vulnerability exists in the input validation of the GOOSE messages where out of range values received and processed by the IED caused a reboot of the device. In order for an attacker to exploit the vulnerability, goose receiving blocks need to be configured...

CVE-2022-1302

In the MZ Automation LibIEC61850 in versions prior to 1.5.1 an unauthenticated attacker can craft a goose message, which may result in a denial of service...

CVE-2022-1302 Malformed Goose Message in LibIEC61850 may result in a denial of service

In the MZ Automation LibIEC61850 in versions prior to 1.5.1 an unauthenticated attacker can craft a goose message, which may result in a denial of service...

CVE-2022-1302

CVE-2022-1302 affects MZ Automation LibIEC61850 versions prior to 1.5.1. An unauthenticated attacker can craft a GOOSE message to cause a denial of service. Remediation: upgrade to LibIEC61850 1.5.1 or newer; as a temporary measure, restrict access to the affected service.

Mz Automation Libiec61850 输入验证错误漏洞

Mz Automation Libiec61850 is an open source library for the IEC 61850 protocol from Mz Automation. An input validation error vulnerability exists in Mz Automation Libiec61850 prior to 1.5.1, where an unauthenticated attacker could craft a goose message to cause a denial of service...

PT-2022-13789 · Mz Automation +1 · Libiec61850 +1

Name of the Vulnerable Software and Affected Versions: MZ Automation LibIEC61850 versions prior to 1.5.1 Description: The issue allows an unauthenticated attacker to craft a goose message, potentially resulting in a denial of service. Recommendations: For versions prior to 1.5.1, update to versio...

CVE-2022-1302

In the MZ Automation LibIEC61850 in versions prior to 1.5.1 an unauthenticated attacker can craft a goose message, which may result in a denial of service...