Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mz-automation libiec61850 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-28286
In mz-automation libiec61850 v1.4.0, a NULL Pointer Dereference was detected in the mmsServer_handleFileCloseRequest.c function of src/mms/iso_mms/server/mms_file_service.c. The vulnerability manifests as SEGV and causes the application to crash
NA
CVE-2024-26529
An issue in mz-automation libiec61850 v.1.5.3 and before, allows a remote malicious user to cause a denial of service (DoS) via the mmsServer_handleDeleteNamedVariableListRequest function of src/mms/iso_mms/server/mms_named_variable_list_service.c.
7.5
CVSSv3
CVE-2023-27772
libiec61850 v1.5.1 exists to contain a segmentation violation via the function ControlObjectClient_setOrigin() at /client/client_control.c.
Mz-automation Libiec61850 1.5.1
8.8
CVSSv3
CVE-2022-3976
A vulnerability has been found in MZ Automation libiec61850 up to 1.4 and classified as critical. This vulnerability affects unknown code of the file src/mms/iso_mms/client/mms_client_files.c of the component MMS File Services. The manipulation of the argument filename leads to p...
Mz-automation Libiec61850
9.8
CVSSv3
CVE-2022-2970
MZ Automation's libIEC61850 (versions 1.4 and prior; version 1.5 prior to commit a3b04b7bc4872a5a39e5de3fdc5fbde52c09e10e) does not sanitize input before memcpy is used, which could allow an malicious user to crash the device or remotely execute arbitrary code.
Mz-automation Libiec61850
7.5
CVSSv3
CVE-2022-2971
MZ Automation's libIEC61850 (versions 1.4 and prior; version 1.5 prior to commit a3b04b7bc4872a5a39e5de3fdc5fbde52c09e10e) accesses a resource using an incompatible type, which could allow an malicious user to crash the server with a malicious payload.
Mz-automation Libiec61850
9.8
CVSSv3
CVE-2022-2972
MZ Automation's libIEC61850 (versions 1.4 and prior; version 1.5 prior to commit a3b04b7bc4872a5a39e5de3fdc5fbde52c09e10e) is vulnerable to a stack-based buffer overflow, which could allow an malicious user to crash the device or remotely execute arbitrary code.
Mz-automation Libiec61850
7.5
CVSSv3
CVE-2022-2973
MZ Automation's libIEC61850 (versions 1.4 and prior; version 1.5 prior to commit a3b04b7bc4872a5a39e5de3fdc5fbde52c09e10e) uses a NULL pointer in certain situations. which could allow an malicious user to crash the server.
Mz-automation Libiec61850
7.5
CVSSv3
CVE-2022-21159
A denial of service vulnerability exists in the parseNormalModeParameters functionality of MZ Automation GmbH libiec61850 1.5.0. A specially-crafted series of network requests can lead to denial of service. An attacker can send a sequence of malformed iec61850 messages to trigger...
Mz-automation Libiec61850 1.5.0
7.5
CVSSv3
CVE-2022-1302
In the MZ Automation LibIEC61850 in versions before 1.5.1 an unauthenticated attacker can craft a goose message, which may result in a denial of service.
Mz-automation Libiec61850
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-17519
open redirect
CVE-2024-21683
cache poisoning
CVE-2021-47524
CVE-2021-47521
CVE-2024-5229
CVE-2021-47560
local
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »