Vulnerabilities > MZ Automation > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-09-23 | CVE-2022-2970 | Out-of-bounds Write vulnerability in Mz-Automation Libiec61850 MZ Automation's libIEC61850 (versions 1.4 and prior; version 1.5 prior to commit a3b04b7bc4872a5a39e5de3fdc5fbde52c09e10e) does not sanitize input before memcpy is used, which could allow an attacker to crash the device or remotely execute arbitrary code. | 9.8 |
| 2022-09-23 | CVE-2022-2972 | Out-of-bounds Write vulnerability in Mz-Automation Libiec61850 MZ Automation's libIEC61850 (versions 1.4 and prior; version 1.5 prior to commit a3b04b7bc4872a5a39e5de3fdc5fbde52c09e10e) is vulnerable to a stack-based buffer overflow, which could allow an attacker to crash the device or remotely execute arbitrary code. | 9.8 |
| 2020-08-26 | CVE-2020-15158 | Integer Underflow (Wrap or Wraparound) vulnerability in Mz-Automation Libiec61850 In libIEC61850 before version 1.4.3, when a message with COTP message length field with value < 4 is received an integer underflow will happen leading to heap buffer overflow. | 9.8 |
| 2018-11-12 | CVE-2018-19185 | Out-of-bounds Write vulnerability in Mz-Automation Libiec61850 1.3 An issue has been found in libIEC61850 v1.3. | 9.8 |
| 2018-11-05 | CVE-2018-18957 | Out-of-bounds Write vulnerability in Mz-Automation Libiec61850 1.3 An issue has been found in libIEC61850 v1.3. | 9.8 |
| 2018-10-30 | CVE-2018-18834 | Out-of-bounds Write vulnerability in Mz-Automation Libiec61850 1.3 An issue has been found in libIEC61850 v1.3. | 9.8 |