Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mz-automation vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2022-1302
In the MZ Automation LibIEC61850 in versions before 1.5.1 an unauthenticated attacker can craft a goose message, which may result in a denial of service.
Mz-automation Libiec61850
7.5
CVSSv3
CVE-2021-45769
A NULL pointer dereference in AcseConnection_parseMessage at src/mms/iso_acse/acse.c of libiec61850 v1.5.0 can lead to a segmentation fault or application crash.
Mz-automation Libiec61850 1.5.0
7.5
CVSSv3
CVE-2021-45773
A NULL pointer dereference in CS104_IPAddress_setFromString at src/iec60870/cs104/cs104_slave.c of lib60870 commit 0d5e76e can lead to a segmentation fault or application crash.
Mz-automation Lib60870
7.5
CVSSv3
CVE-2021-21778
A denial of service vulnerability exists in the ASDU message processing functionality of MZ Automation GmbH lib60870.NET 2.2.0. A specially crafted network request can lead to loss of communications. An attacker can send an unauthenticated message to trigger this vulnerability.
Mz-automation Lib60870 2.2.0
9.8
CVSSv3
CVE-2020-15158
In libIEC61850 before version 1.4.3, when a message with COTP message length field with value < 4 is received an integer underflow will happen leading to heap buffer overflow. This can cause an application crash or on some platforms even the execution of remote code. If your a...
Mz-automation Libiec61850
8.8
CVSSv3
CVE-2020-7054
MmsValue_decodeMmsData in mms/iso_mms/server/mms_access_result.c in libIEC61850 up to and including 1.4.0 has a heap-based buffer overflow when parsing the MMS_BIT_STRING data type.
Mz-automation Libiec61850
6.5
CVSSv3
CVE-2019-19958
In libIEC61850 1.4.0, StringUtils_createStringFromBuffer in common/string_utilities.c has an integer signedness issue that could lead to an attempted excessive memory allocation and denial of service.
Mz-automation Libiec61850 1.4.0
6.5
CVSSv3
CVE-2019-19957
In libIEC61850 1.4.0, getNumberOfElements in mms/iso_mms/server/mms_access_result.c has an out-of-bounds read vulnerability, related to bufPos and elementLength.
Mz-automation Libiec61850 1.4.0
6.5
CVSSv3
CVE-2019-19944
In libIEC61850 1.4.0, BerDecoder_decodeUint32 in mms/asn1/ber_decode.c has an out-of-bounds read, related to intLen and bufPos.
Mz-automation Libiec61850 1.4.0
6.5
CVSSv3
CVE-2019-19930
In libIEC61850 1.4.0, MmsValue_newOctetString in mms/iso_mms/common/mms_value.c has an integer signedness error that can lead to an attempted excessive memory allocation.
Mz-automation Libiec61850 1.4.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7028
memory leak
log injection
CVE-2024-3400
CVE-2022-48695
CVE-2022-48675
CVE-2024-34487
CVE-2024-33792
spoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »