How severe is CVE-2019-19958?

CVE-2019-19958 has a CVSS v3 score of 6.5 (MEDIUM).

CVE-2019-19958

Name: libiec61850
Author: mz-automation

6.5MEDIUM

In libIEC61850 1.4.0, StringUtils_createStringFromBuffer in common/string_utilities.c has an integer signedness issue that could lead to an attempted excessive memory allocation and denial of service.

Опубликовано: 12/24/2019Обновлено: 11/21/2024

Описание

In libIEC61850 1.4.0, StringUtils_createStringFromBuffer in common/string_utilities.c has an integer signedness issue that could lead to an attempted excessive memory allocation and denial of service.

ИИ-АнализНа базе ИИ

Затронутые продукты

mz-automationlibiec61850

1.4.0

Ссылки

https://github.com/mz-automation/libiec61850/issues/198
ExploitThird Party Advisory
https://github.com/mz-automation/libiec61850/issues/198
ExploitThird Party Advisory