Vulnerability Details CVE-2022-0367
A heap-based buffer overflow flaw was found in libmodbus in function modbus_reply() in src/modbus.c.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 8.0%
CVSS Severity
CVSS v3 Score 7.8
References
- https://bugzilla.redhat.com/show_bug.cgi?id=2045571
- https://github.com/stephane/libmodbus/commit/b4ef4c17d618eba0adccc4c7d9e9a1ef809fc9b6
- https://github.com/stephane/libmodbus/issues/614
- https://lists.debian.org/debian-lts-announce/2022/09/msg00007.html
- https://bugzilla.redhat.com/show_bug.cgi?id=2045571
- https://github.com/stephane/libmodbus/commit/b4ef4c17d618eba0adccc4c7d9e9a1ef809fc9b6
- https://github.com/stephane/libmodbus/issues/614
- https://lists.debian.org/debian-lts-announce/2022/09/msg00007.html
Products affected by CVE-2022-0367
-
cpe:2.3:a:fedoraproject:extra_packages_for_enterprise_linux:7.0
-
cpe:2.3:a:libmodbus:libmodbus:-
-
cpe:2.3:a:libmodbus:libmodbus:3.0.2
-
cpe:2.3:a:libmodbus:libmodbus:3.0.3
-
cpe:2.3:a:libmodbus:libmodbus:3.0.4
-
cpe:2.3:a:libmodbus:libmodbus:3.0.5
-
cpe:2.3:a:libmodbus:libmodbus:3.0.7
-
cpe:2.3:a:libmodbus:libmodbus:3.1.0
-
cpe:2.3:a:libmodbus:libmodbus:3.1.1
-
cpe:2.3:a:libmodbus:libmodbus:3.1.2
-
cpe:2.3:a:libmodbus:libmodbus:3.1.3
-
cpe:2.3:a:libmodbus:libmodbus:3.1.4
-
cpe:2.3:a:libmodbus:libmodbus:3.1.5
-
cpe:2.3:a:libmodbus:libmodbus:3.1.6
-
cpe:2.3:o:debian:debian_linux:10.0
-
cpe:2.3:o:fedoraproject:fedora:35