CVE-2026-16225
MEDIUM SEVERITYCVSS Score & Metrics
Base Score
6.3 / 10
Vector String
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Vulnerability Description
A security flaw has been discovered in davenardella snap7 up to 1.4.3. The impacted element is the function TSnap7Peer::NegotiatePDULength of the file src/core/s7_peer.cpp. The manipulation of the argument PDULength results in out-of-bounds write. The attack can be executed remotely. The exploit has been released to the public and may be used for attacks.
Vulnerability Details
Published Date
Last Modified
CWE ID
CWE-119
Source
NVD
Vendor
davenardella
Product
snap7
Discussion (0)
Add Comment
No comments yet. Be the first!