Aggregates CVE and security vulnerability intelligence across all mz-automation-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Common weakness patterns include vendor risk memory corruption, vendor risk buffer overflow, and vendor risk path handling, with potential vendor impact memory corruption across vendor surface software deployment use cases.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2024-45971 | Multiple Buffer overflows in the MMS Client in MZ Automation LibIEC61850 before commit 1f52be9ddeae00e69cd43e4cac3cb4f0c880c4f0 allow a malicious server to cause a stack-based buffer overflow via the MMS IdentifyResponse message. | [email protected] | 9.8 | 0.60% | 2024-11-15 | 2026-06-17 |
| CVE-2024-45970 | Multiple Buffer overflows in the MMS Client in MZ Automation LibIEC61850 before commit ac925fae8e281ac6defcd630e9dd756264e9c5bc allow a malicious server to cause a stack-based buffer overflow via the MMS FileDirResponse message. | [email protected] | 9.8 | 0.60% | 2024-11-15 | 2026-06-17 |
| CVE-2024-36702 | libiec61850 v1.5 was discovered to contain a heap overflow via the BerEncoder_encodeLength function at /asn1/ber_encoder.c. | [email protected] | 7.4 | 0.34% | 2024-06-11 | 2026-06-17 |
| CVE-2024-28286 | In mz-automation libiec61850 v1.4.0, a NULL Pointer Dereference was detected in the mmsServer_handleFileCloseRequest.c function of src/mms/iso_mms/server/mms_file_service.c. The vulnerability manifests as SEGV and causes the application to crash | [email protected] | 7.5 | 0.74% | 2024-03-20 | 2026-06-17 |
| CVE-2024-26529 | An issue in mz-automation libiec61850 v.1.5.3 and before, allows a remote attacker to cause a denial of service (DoS) via the mmsServer_handleDeleteNamedVariableListRequest function of src/mms/iso_mms/server/mms_named_variable_list_service.c. | [email protected] | 7.5 | 0.78% | 2024-03-13 | 2026-06-17 |
| CVE-2024-25366 | Buffer Overflow vulnerability in mz-automation.de libiec61859 v.1.4.0 allows a remote attacker to cause a denial of service via the mmsServer_handleGetNameListRequest function to the mms_getnamelist_service component. | [email protected] | 6.2 | 0.87% | 2024-02-20 | 2026-06-17 |
| CVE-2023-27772 | libiec61850 v1.5.1 was discovered to contain a segmentation violation via the function ControlObjectClient_setOrigin() at /client/client_control.c. | [email protected] | 7.5 | 0.91% | 2023-04-13 | 2026-06-17 |
| CVE-2023-23205 | An issue was discovered in lib60870 v2.3.2. There is a memory leak in lib60870/lib60870-C/examples/multi_client_server/multi_client_server.c. | [email protected] | 5.5 | 0.24% | 2023-02-24 | 2026-06-17 |
| CVE-2022-3976 | A vulnerability has been found in MZ Automation libiec61850 up to 1.4 and classified as critical. This vulnerability affects unknown code of the file src/mms/iso_mms/client/mms_client_files.c of the component MMS File Services. The manipulation of the argument filename leads to path traversal. Upgrading to version 1.5 is able to address this issue. The name of the patch is 10622ba36bb3910c151348f1569f039ecdd8786f. It is recommended to upgrade the affected component. The identifier of this vulner | [email protected] | 5.5 | 0.46% | 2022-11-13 | 2026-06-17 |
| CVE-2022-2973 | MZ Automation's libIEC61850 (versions 1.4 and prior; version 1.5 prior to commit a3b04b7bc4872a5a39e5de3fdc5fbde52c09e10e) uses a NULL pointer in certain situations. which could allow an attacker to crash the server. | [email protected] | 8.6 | 0.83% | 2022-09-23 | 2026-06-17 |
| CVE-2022-2972 | MZ Automation's libIEC61850 (versions 1.4 and prior; version 1.5 prior to commit a3b04b7bc4872a5a39e5de3fdc5fbde52c09e10e) is vulnerable to a stack-based buffer overflow, which could allow an attacker to crash the device or remotely execute arbitrary code. | [email protected] | 10.0 | 1.10% | 2022-09-23 | 2026-06-17 |
| CVE-2022-2971 | MZ Automation's libIEC61850 (versions 1.4 and prior; version 1.5 prior to commit a3b04b7bc4872a5a39e5de3fdc5fbde52c09e10e) accesses a resource using an incompatible type, which could allow an attacker to crash the server with a malicious payload. | [email protected] | 8.6 | 0.83% | 2022-09-23 | 2026-06-17 |
| CVE-2022-2970 | MZ Automation's libIEC61850 (versions 1.4 and prior; version 1.5 prior to commit a3b04b7bc4872a5a39e5de3fdc5fbde52c09e10e) does not sanitize input before memcpy is used, which could allow an attacker to crash the device or remotely execute arbitrary code. | [email protected] | 10.0 | 1.06% | 2022-09-23 | 2026-06-17 |
| CVE-2022-21159 | A denial of service vulnerability exists in the parseNormalModeParameters functionality of MZ Automation GmbH libiec61850 1.5.0. A specially-crafted series of network requests can lead to denial of service. An attacker can send a sequence of malformed iec61850 messages to trigger this vulnerability. | [email protected] | 7.5 | 1.75% | 2022-04-15 | 2026-06-17 |
| CVE-2022-1302 | In the MZ Automation LibIEC61850 in versions prior to 1.5.1 an unauthenticated attacker can craft a goose message, which may result in a denial of service. | [email protected] | 7.5 | 0.98% | 2022-04-12 | 2026-06-17 |
| CVE-2021-45773 | A NULL pointer dereference in CS104_IPAddress_setFromString at src/iec60870/cs104/cs104_slave.c of lib60870 commit 0d5e76e can lead to a segmentation fault or application crash. | [email protected] | 7.5 | 1.06% | 2022-01-14 | 2026-06-17 |
| CVE-2021-45769 | A NULL pointer dereference in AcseConnection_parseMessage at src/mms/iso_acse/acse.c of libiec61850 v1.5.0 can lead to a segmentation fault or application crash. | [email protected] | 7.5 | 1.06% | 2022-01-14 | 2026-06-17 |
| CVE-2021-21778 | A denial of service vulnerability exists in the ASDU message processing functionality of MZ Automation GmbH lib60870.NET 2.2.0. A specially crafted network request can lead to loss of communications. An attacker can send an unauthenticated message to trigger this vulnerability. | [email protected] | 7.5 | 1.26% | 2021-08-25 | 2026-06-16 |
| CVE-2020-15158 | In libIEC61850 before version 1.4.3, when a message with COTP message length field with value < 4 is received an integer underflow will happen leading to heap buffer overflow. This can cause an application crash or on some platforms even the execution of remote code. If your application is used in open networks or there are untrusted nodes in the network it is highly recommend to apply the patch. This was patched with commit 033ab5b. Users of version 1.4.x should upgrade to version 1.4.3 when av | [email protected] | 7.7 | 2.04% | 2020-08-26 | 2026-06-16 |
| CVE-2020-7054 | MmsValue_decodeMmsData in mms/iso_mms/server/mms_access_result.c in libIEC61850 through 1.4.0 has a heap-based buffer overflow when parsing the MMS_BIT_STRING data type. | [email protected] | 8.8 | 1.10% | 2020-01-14 | 2026-06-16 |