Back to CVE List

CVE-2026-16225

MEDIUM SEVERITY

CVSS Score & Metrics

Base Score
6.3 / 10
Vector String
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Vulnerability Description

A security flaw has been discovered in davenardella snap7 up to 1.4.3. The impacted element is the function TSnap7Peer::NegotiatePDULength of the file src/core/s7_peer.cpp. The manipulation of the argument PDULength results in out-of-bounds write. The attack can be executed remotely. The exploit has been released to the public and may be used for attacks.

Vulnerability Details

Published Date
Last Modified
CWE ID
CWE-119
Source
NVD
Vendor
davenardella
Product
snap7

External References

Discussion (0)

Add Comment

No comments yet. Be the first!