Lucene search
K

8 matches found

CNVD
CNVD
added 2019/12/24 12:0 a.m.2 views

libIEC61850 'BerDecoder_decodeUint32' function buffer overflow vulnerability

libIEC61850 is an open source library for the IEC 61850 protocol. A buffer overflow vulnerability exists in the 'BerDecoderdecodeUint32' function in the mms/asn1/berdecode.c file in libIEC61850 version 1.4.0. The vulnerability stems from a networked system or product performing operations in memo...

6.5CVSS7.3AI score0.00935EPSS
Exploits1References1
OSV
OSV
added 2019/12/23 7:15 p.m.16 views

CVE-2019-19944

In libIEC61850 1.4.0, BerDecoderdecodeUint32 in mms/asn1/berdecode.c has an out-of-bounds read, related to intLen and bufPos...

6.5CVSS6.8AI score
Exploits0References1
Prion
Prion
added 2019/12/23 7:15 p.m.16 views

Out-of-bounds

In libIEC61850 1.4.0, BerDecoderdecodeUint32 in mms/asn1/berdecode.c has an out-of-bounds read, related to intLen and bufPos...

4.3CVSS6.4AI score0.00935EPSS
Exploits1References1Affected Software1
CNVD
CNVD
added 2018/11/13 12:0 a.m.3 views

libIEC61850 Buffer Overflow Vulnerability

libIEC61850 is an open source library for IEC 61850. A heap buffer overflow vulnerability exists in the 'BerEncoderencodeOctetString' function in the mms/asn1/berencoder.c file in libIEC61850 version 1.3, which can be exploited by an attacker to cause a denial of service or code execution...

9.8CVSS9.8AI score0.02116EPSS
Exploits1References1
Prion
Prion
added 2018/11/12 5:29 a.m.17 views

Heap overflow

An issue has been found in libIEC61850 v1.3. It is a heap-based buffer overflow in BerEncoderencodeOctetString in mms/asn1/berencoder.c. This is exploitable even after CVE-2018-18834 has been patched, with a different dataSetValue sequence than the CVE-2018-18834 attack vector...

7.5CVSS9.7AI score0.02116EPSS
Exploits2References2Affected Software1
OSV
OSV
added 2018/11/12 5:29 a.m.20 views

CVE-2018-19185

An issue has been found in libIEC61850 v1.3. It is a heap-based buffer overflow in BerEncoderencodeOctetString in mms/asn1/berencoder.c. This is exploitable even after CVE-2018-18834 has been patched, with a different dataSetValue sequence than the CVE-2018-18834 attack vector...

9.8CVSS7.4AI score
Exploits0References2
NVD
NVD
added 2018/10/30 6:29 a.m.20 views

CVE-2018-18834

An issue has been found in libIEC61850 v1.3. It is a heap-based buffer overflow in BerEncoderencodeOctetString in mms/asn1/berencoder.c...

9.8CVSS9.8AI score0.02116EPSS
Exploits1References2
OSV
OSV
added 2018/10/30 6:29 a.m.16 views

CVE-2018-18834

An issue has been found in libIEC61850 v1.3. It is a heap-based buffer overflow in BerEncoderencodeOctetString in mms/asn1/berencoder.c...

9.8CVSS9.8AI score
Exploits0References2
Rows per page
Query Builder