CVE-2024-26529 | MZ Automation libIEC61850 up to 1.5.3 mms_named_variable_list_service.c mmsServer_handleDeleteNamedVariableListRequest denial of service (Issue 492)

Posted by Angelo Barbosa | Mar 13, 2024 | CVE

A vulnerability was found in MZ Automation libIEC61850 up to 1.5.3 and classified as problematic. Affected by this issue is the function mmsServer_handleDeleteNamedVariableListRequest of the file src/mms/iso_mms/server/mms_named_variable_list_service.c. The manipulation leads to denial of service.

This vulnerability is handled as CVE-2024-26529. The attack may be launched remotely. There is no exploit available.

CVE-2024-26529 | MZ Automation libIEC61850 up to 1.5.3 mms_named_variable_list_service.c mmsServer_handleDeleteNamedVariableListRequest denial of service (Issue 492)

Related Posts

CVE-2024-21876 | Enphase IQ Gateway prior 8.2.4225 URL Parameter path traversal

CVE-2024-7940 | Hitachi Energy MicroSCADA SYS600 up to 10.5 missing authentication

CVE-2024-7258 | WooCommerce Google Feed Manager Plugin up to 2.8.0 on WordPress authorization

CVE-2023-50221 | Inductive Automation Ignition ResponseParser deserialization