Libiec61850 Security Vulnerabilities and Issues — Libiec61850 CVE List

Lucene search

Mz-automationLibiec61850

5 matches found

cve•added 2019/12/23 3:15 a.m.•92 views

CVE-2019-19931

In libIEC61850 1.4.0, MmsValue_decodeMmsData in mms/iso_mms/server/mms_access_result.c has a heap-based buffer overflow.

8.8CVSS8.7AI score0.00512EPSS

cve•added 2022/11/13 2:15 p.m.•46 views

CVE-2022-3976

A vulnerability has been found in MZ Automation libiec61850 up to 1.4 and classified as critical. This vulnerability affects unknown code of the file src/mms/iso_mms/client/mms_client_files.c of the component MMS File Services. The manipulation of the argument filename leads to path traversal. Upgr...

8.8CVSS7.3AI score0.00048EPSS

cve•added 2022/09/23 4:15 p.m.•41 views

CVE-2022-2971

MZ Automation's libIEC61850 (versions 1.4 and prior; version 1.5 prior to commit a3b04b7bc4872a5a39e5de3fdc5fbde52c09e10e) accesses a resource using an incompatible type, which could allow an attacker to crash the server with a malicious payload.

8.6CVSS8AI score0.00099EPSS

cve•added 2020/01/14 9:15 p.m.•39 views

CVE-2020-7054

MmsValue_decodeMmsData in mms/iso_mms/server/mms_access_result.c in libIEC61850 through 1.4.0 has a heap-based buffer overflow when parsing the MMS_BIT_STRING data type.

8.8CVSS8.9AI score0.00661EPSS

cve•added 2022/09/23 4:15 p.m.•35 views

CVE-2022-2973

MZ Automation's libIEC61850 (versions 1.4 and prior; version 1.5 prior to commit a3b04b7bc4872a5a39e5de3fdc5fbde52c09e10e) uses a NULL pointer in certain situations. which could allow an attacker to crash the server.

8.6CVSS7.9AI score0.00124EPSS