2 matches found
CVE-2023-45599
A CWE-646 “Reliance on File Name or Extension of Externally-Supplied File” vulnerability in the “iec61850” functionality of the web application allows a remote authenticated attacker to upload any arbitrary type of file into the device. This issue affects: AiLux imx6 bundle below version...
PT-2019-14678 · Unknown +1 · Libiec61850 +1
Name of the Vulnerable Software and Affected Versions: libIEC61850 versions prior to 1.3.4 Description: The issue is related to a use-after-free in the MmsServer waitReady function located in the mms/iso mms/server/mms server.c file. This can be demonstrated using the server example goose...