CVE-2024-34244 Common Vulnerabilities and Exposures

Upstream information

CVE-2024-34244 at MITRE

Description

libmodbus v3.1.10 is vulnerable to Buffer Overflow via the modbus_write_bits function. This issue can be triggered when the function is fed with specially crafted input, which leads to out-of-bounds read and can potentially cause a crash or other unintended behaviors.

SUSE information

Overall state of this security issue: Does not affect SUSE products

This issue is currently rated as having important severity.

CVSS v3 Scores
	SUSE
Base Score	8.2
Vector	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H
Attack Vector	Network
Attack Complexity	Low
Privileges Required	None
User Interaction	None
Scope	Unchanged
Confidentiality Impact	Low
Integrity Impact	None
Availability Impact	High
CVSSv3 Version	3.1

SUSE Bugzilla entry: 1224062 [IN_PROGRESS]

No SUSE Security Announcements cross referenced.

SUSE Timeline for this CVE

CVE page created: Wed May 8 20:00:27 2024
CVE page last modified: Wed Sep 4 16:47:03 2024