Libiec61850 Security Vulnerabilities and Issues — Libiec61850 CVE List

Lucene search

Mz-automationLibiec61850

7 matches found

CVE•added 2018/11/05 10:29 p.m.•58 views

CVE-2018-18957

An issue has been found in libIEC61850 v1.3. It is a stack-based buffer overflow in prepareGooseBuffer in goose/goose_publisher.c.

9.8CVSS9.7AI score0.08069EPSS

CVE•added 2018/11/07 7:29 p.m.•46 views

CVE-2018-19093

An issue has been found in libIEC61850 v1.3. It is a SEGV in ControlObjectClient_setCommandTerminationHandler in client/client_control.c. NOTE: the software maintainer disputes this because it requires incorrect usage of the client_example_control program

7.5CVSS7.5AI score0.00334EPSS

CVE•added 2018/11/09 11:29 a.m.•42 views

CVE-2018-19122

An issue has been found in libIEC61850 v1.3. It is a NULL pointer dereference in Ethernet_sendPacket in ethernet_bsd.c.

4.3CVSS4.6AI score0.0026EPSS

CVE•added 2018/11/05 9:29 a.m.•36 views

CVE-2018-18937

An issue has been found in libIEC61850 v1.3. It is a NULL pointer dereference in ClientDataSet_getValues in client/ied_connection.c.

7.5CVSS7.5AI score0.00336EPSS

CVE•added 2018/11/12 5:29 a.m.•35 views

CVE-2018-19185

An issue has been found in libIEC61850 v1.3. It is a heap-based buffer overflow in BerEncoder_encodeOctetString in mms/asn1/ber_encoder.c. This is exploitable even after CVE-2018-18834 has been patched, with a different dataSetValue sequence than the CVE-2018-18834 attack vector.

9.8CVSS9.7AI score0.00459EPSS

CVE•added 2018/10/30 6:29 a.m.•33 views

CVE-2018-18834

An issue has been found in libIEC61850 v1.3. It is a heap-based buffer overflow in BerEncoder_encodeOctetString in mms/asn1/ber_encoder.c.

9.8CVSS9.6AI score0.00459EPSS

CVE•added 2018/11/09 11:29 a.m.•30 views

CVE-2018-19121

An issue has been found in libIEC61850 v1.3. It is a SEGV in Ethernet_receivePacket in ethernet_bsd.c.

4.3CVSS4.6AI score0.00222EPSS