Vulnerabilities > CVE-2021-45769 - NULL Pointer Dereference vulnerability in Mz-Automation Libiec61850 1.5.0

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
PARTIAL
network
low complexity
mz-automation
CWE-476

Summary

A NULL pointer dereference in AcseConnection_parseMessage at src/mms/iso_acse/acse.c of libiec61850 v1.5.0 can lead to a segmentation fault or application crash.

Vulnerable Configurations

Part Description Count
Application
Mz-Automation
1

Common Weakness Enumeration (CWE)