CVE-2026-13590 | seladb PcapPlusPlus 25.05 Modbus Protocol ModbusLayer.h getLength length heap-based overflow (Issue 2155)

Inserito da Angelo Barbosa | Giu 29, 2026 | CVE

A vulnerability categorized as critical has been discovered in seladb PcapPlusPlus 25.05. This impacts the function pcpp::ModbusLayer::getLength in the library Packet++/header/ModbusLayer.h of the component Modbus Protocol Handler. The manipulation of the argument length results in heap-based buffer overflow.

This vulnerability is reported as CVE-2026-13590. The attack can be launched remotely. Moreover, an exploit is present.

Applying a patch is advised to resolve this issue.

CVE-2026-13590 | seladb PcapPlusPlus 25.05 Modbus Protocol ModbusLayer.h getLength length heap-based overflow (Issue 2155)

Post correlati

CVE-2024-33525 | ILIAS up to 7.30/8.10/9.0 XML File Upload cross site scripting

CVE-2025-10732 | SureForms Plugin up to 1.12.1 on WordPress REST API Endpoint srfm-global-settings authorization

CVE-2021-47097 | Linux Kernel up to 5.4.168/5.10.88/5.15.11 Input elantech_change_report_id param[] out-of-bounds

CVE-2024-4886 | buddyboss-platform Plugin up to 2.5.x on WordPress ID authorization