2 matches found
CVE-2024-52296
libosdp is an implementation of IEC 60839-11-5 OSDP Open Supervised Device Protocol and provides a C library with support for C++, Rust and Python3. At ospdcommon.c, on the osdpreplyname function, any reply id between REPLYACK and REPLYXRD is valid, but names array do not declare all of the range...
PT-2024-35162
Name of the Vulnerable Software and Affected Versions libosdp versions prior to 2.4.0 Description The issue arises from a null pointer dereference in the osdp reply name function at ospd common.c. Any reply id between REPLY ACK and REPLY XRD is considered valid, but the names array does not decla...