CRITICAL🇵🇱 Wersja polska

CVE-2024-45970

CVSS 9.8v3.1pub. 2024-11-15upd. 2025-10-01

Multiple Buffer overflows in the MMS Client in MZ Automation LibIEC61850 before commit ac925fae8e281ac6defcd630e9dd756264e9c5bc allow a malicious server to cause a stack-based buffer overflow via the MMS FileDirResponse message.

🤖 AI Analysis
How it works

The vulnerability results from improper handling of MMS FileDirResponse messages by the MMS client in the LibIEC61850 library (CWE-120 — classic buffer overflow). A malicious server can send a specially crafted FileDirResponse that causes a stack buffer overflow on the client side. Due to the lack of input size validation, it is possible to overwrite stack memory, which can lead to taking control of the program's execution flow.

Impact

An attacker controlling an MMS server can trigger arbitrary code execution (RCE) on the client device, gain full control over the system, or destabilize it (DoS). Confidentiality, integrity, and availability of the system are potentially compromised to the highest degree.

Mitigation & patch

The LibIEC61850 library must be updated to a version containing commit ac925fae8e281ac6defcd630e9dd756264e9c5bc or later. Details are available in the project's GitHub repository and in the ENCS statement. Until the update is applied, it is recommended to restrict network access to components using the MMS client library and to implement OT/ICS network segmentation.

Who is affected

MZ Automation LibIEC61850 in all versions preceding commit ac925fae8e281ac6defcd630e9dd756264e9c5bc

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Mz Automation Libiec61850

    APP
    Mz-Automation
    < 1.6.0
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Memory
CWE
References

Related vulnerabilities

CVE-2024-45971CRITICAL9.8PL ✓ten sam produkt

Buffer overflow w MMS Client biblioteki LibIEC61850 — zdalne przejęcie kontroli

CVE-2022-2972CRITICAL10.0ten sam produkt

MZ Automation's libIEC61850 (versions 1.4 and prior; version 1.5 prior to commit a3b04b7bc4872a5a39e5de3fdc5fb...

CVE-2022-2970CRITICAL10.0ten sam produkt

MZ Automation's libIEC61850 (versions 1.4 and prior; version 1.5 prior to commit a3b04b7bc4872a5a39e5de3fdc5fb...

CVE-2018-19185CRITICAL9.8ten sam produkt

An issue has been found in libIEC61850 v1.3. It is a heap-based buffer overflow in BerEncoder_encodeOctetStrin...

CVE-2018-18957CRITICAL9.8ten sam produkt

An issue has been found in libIEC61850 v1.3. It is a stack-based buffer overflow in prepareGooseBuffer in goos...