CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1CVE-2019-6136
https://notcve.org/view.php?id=CVE-2019-6136
An issue has been found in libIEC61850 v1.3.1. Ethernet_setProtocolFilter in hal/ethernet/linux/ethernet_linux.c has a SEGV, as demonstrated by sv_subscriber_example.c and sv_subscriber.c. Se ha encontrado un problema en libIEC61850 v1.3.1. Ethernet_setProtocolFilter en hal/ethernet/linux/ethernet_linux.c tiene un SEGV, tal y como queda demostrado con sv_subscriber_example.c y sv_subscriber.c. • https://github.com/mz-automation/libiec61850/issues/105 •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 2CVE-2018-19185
https://notcve.org/view.php?id=CVE-2018-19185
An issue has been found in libIEC61850 v1.3. It is a heap-based buffer overflow in BerEncoder_encodeOctetString in mms/asn1/ber_encoder.c. This is exploitable even after CVE-2018-18834 has been patched, with a different dataSetValue sequence than the CVE-2018-18834 attack vector. Se ha detectado un problema en libIEC61850 v1.3. Es un desbordamiento de búfer basado en memoria dinámica (heap) en BerEncoder_encodeOctetString en mms/asn1/ber_encoder.c. • https://github.com/fouzhe/security/tree/master/libiec61850#another-heap-buffer-overflow-in-function-berencoder_encodeoctetstring https://github.com/mz-automation/libiec61850/issues/87 • CWE-787: Out-of-bounds Write •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 2CVE-2018-19121
https://notcve.org/view.php?id=CVE-2018-19121
An issue has been found in libIEC61850 v1.3. It is a SEGV in Ethernet_receivePacket in ethernet_bsd.c. Se ha detectado un problema en libIEC61850 v1.3. Se trata de un SEGV en Ethernet_receivePacket en ethernet_bsd.c. • https://github.com/fouzhe/security/tree/master/libiec61850#segv-in-function-ethernet_receivepacket https://github.com/mz-automation/libiec61850/issues/85 • CWE-476: NULL Pointer Dereference •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 2CVE-2018-19122
https://notcve.org/view.php?id=CVE-2018-19122
An issue has been found in libIEC61850 v1.3. It is a NULL pointer dereference in Ethernet_sendPacket in ethernet_bsd.c. Se ha detectado un problema en libIEC61850 v1.3. Se trata de una desreferencia de puntero NULL en Ethernet_sendPacket en ethernet_bsd.c. • https://github.com/fouzhe/security/tree/master/libiec61850#segv-in-function-ethernet_sendpacket https://github.com/mz-automation/libiec61850/issues/86 • CWE-476: NULL Pointer Dereference •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 2CVE-2018-19093
https://notcve.org/view.php?id=CVE-2018-19093
An issue has been found in libIEC61850 v1.3. It is a SEGV in ControlObjectClient_setCommandTerminationHandler in client/client_control.c. NOTE: the software maintainer disputes this because it requires incorrect usage of the client_example_control program ** EN DISPUTA ** Se ha encontrado un problema en libIEC61850 v1.3. Es un SEGV ControlObjectClient_setCommandTerminationHandler en client/client_control.c. NOTA: el mantenedor de software discute esto debido a que requiere un uso incorrecto del programa client_example_control. • https://github.com/fouzhe/security/tree/master/libiec61850#segv-in-function-controlobjectclient_setcommandterminationhandler https://github.com/mz-automation/libiec61850/issues/84 • CWE-122: Heap-based Buffer Overflow •