ICSA-22-251-01 · Published 2022-09-08 · View on CISA ICS-CERT ↗

MZ Automation libIEC61850

CVSS 10.0 CRITICAL

Risk Summary

Successful exploitation of these vulnerabilities could crash the device being accessed, and buffer overflow conditions could allow remote code execution.

CVEs (3)

CVE-2022-2970 CVE-2022-2972 CVE-2022-2973

Remediations

MZ Automation recommends users update to the latest version: libIEC61850.

Affected Vendors

MZ Automation GmbH

Affected Products (2)

MZ Automation GmbH · libIEC61850 >= 1.5 | <= a3b04b7bc4872a5a39e5de3fdc5fbde52c09e10e

MZ Automation GmbH · libIEC61850 <= 1.4

Affected Sectors

Energy

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more