How severe is CVE-2019-19958?

CVE-2019-19958 has a CVSS v3 score of 6.5 (MEDIUM).

CVE-2019-19958

Name: libiec61850
Author: mz-automation

6.5MEDIUM

In libIEC61850 1.4.0, StringUtils_createStringFromBuffer in common/string_utilities.c has an integer signedness issue that could lead to an attempted excessive memory allocation and denial of service.

公開日: 12/24/2019更新日: 11/21/2024

説明

In libIEC61850 1.4.0, StringUtils_createStringFromBuffer in common/string_utilities.c has an integer signedness issue that could lead to an attempted excessive memory allocation and denial of service.

AI分析AIによる分析

影響を受ける製品

mz-automationlibiec61850

1.4.0

参照

https://github.com/mz-automation/libiec61850/issues/198
ExploitThird Party Advisory
https://github.com/mz-automation/libiec61850/issues/198
ExploitThird Party Advisory