Aggregates CVE and security vulnerability intelligence across all iec104_project-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Historical issues mainly involve vendor risk memory corruption, vendor risk buffer overflow, and vendor risk denial of service and related problems; some flaws may lead to vendor impact application crash.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2020-20486 | IEC104 v1.0 contains a stack-buffer overflow in the parameter Iec10x_Sta_Addr. | [email protected] | 7.5 | 0.35% | 2021-08-31 | 2024-11-21 |
| CVE-2020-18731 | A segmentation violation in the Iec104_Deal_FirmUpdate function of IEC104 v1.0 allows attackers to cause a denial of service (DOS). | [email protected] | 7.5 | 0.39% | 2021-08-23 | 2024-11-21 |
| CVE-2020-18730 | A segmentation violation in the Iec104_Deal_I function of IEC104 v1.0 allows attackers to cause a denial of service (DOS). | [email protected] | 7.5 | 0.39% | 2021-08-23 | 2024-11-21 |