How severe is CVE-2019-19958?

CVE-2019-19958 has a CVSS v3 score of 6.5 (MEDIUM).

CVE-2019-19958

Name: libiec61850
Author: mz-automation

6.5MEDIUM

In libIEC61850 1.4.0, StringUtils_createStringFromBuffer in common/string_utilities.c has an integer signedness issue that could lead to an attempted excessive memory allocation and denial of service.

发布于: 12/24/2019更新于: 11/21/2024

描述

In libIEC61850 1.4.0, StringUtils_createStringFromBuffer in common/string_utilities.c has an integer signedness issue that could lead to an attempted excessive memory allocation and denial of service.

AI分析AI驱动

受影响产品

mz-automationlibiec61850

1.4.0

参考资料

https://github.com/mz-automation/libiec61850/issues/198
ExploitThird Party Advisory
https://github.com/mz-automation/libiec61850/issues/198
ExploitThird Party Advisory