Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libmodbus libmodbus vulnerabilities and exploits
(subscribe to this query)
6.4
CVSSv2
CVE-2019-14463
An issue exists in libmodbus prior to 3.0.7 and 3.1.x prior to 3.1.5. There is an out-of-bounds read for the MODBUS_FC_WRITE_MULTIPLE_REGISTERS case, aka VD-1301.
Libmodbus Libmodbus
Fedoraproject Fedora 29
Fedoraproject Fedora 30
Debian Debian Linux 9.0
6.4
CVSSv2
CVE-2019-14462
An issue exists in libmodbus prior to 3.0.7 and 3.1.x prior to 3.1.5. There is an out-of-bounds read for the MODBUS_FC_WRITE_MULTIPLE_COILS case, aka VD-1302.
Libmodbus Libmodbus
Fedoraproject Fedora 29
Fedoraproject Fedora 30
Debian Debian Linux 9.0
NA
CVE-2022-0367
A heap-based buffer overflow flaw was found in libmodbus in function modbus_reply() in src/modbus.c.
Libmodbus Libmodbus
Fedoraproject Fedora 35
Fedoraproject Extra Packages For Enterprise Linux 7.0
Debian Debian Linux 10.0
NA
CVE-2024-34244
libmodbus v3.1.10 is vulnerable to Buffer Overflow via the modbus_write_bits function. This issue can be triggered when the function is fed with specially crafted input, which leads to out-of-bounds read and can potentially cause a crash or other unintended behaviors.
NA
CVE-2024-36843
libmodbus v3.1.6 exists to contain a heap overflow via the modbus_mapping_free() function.
NA
CVE-2023-26793
libmodbus v3.1.10 has a heap-based buffer overflow vulnerability in read_io_status function in src/modbus.c.
NA
CVE-2024-36845
An invalid pointer in the modbus_receive() function of libmodbus v3.1.6 allows malicious users to cause a Denial of Service (DoS) via a crafted message sent to the unit-test-server.
NA
CVE-2024-36844
libmodbus v3.1.6 exists to contain a use-after-free via the ctx->backend pointer. This vulnerability allows malicious users to cause a Denial of Service (DoS) via a crafted message sent to the unit-test-server.
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started