• caglararli@hotmail.com
  • 05386281520

CVE-2024-25366 | MZ Automation libiec61859 1.4.0 mms_getnamelist_service mmsServer_handleGetNameListRequest weak iv (Issue 492)

Çağlar Arlı      -    13 Views

CVE-2024-25366 | MZ Automation libiec61859 1.4.0 mms_getnamelist_service mmsServer_handleGetNameListRequest weak iv (Issue 492)

A vulnerability was found in MZ Automation libiec61859 1.4.0. It has been classified as problematic. Affected is the function mmsServer_handleGetNameListRequest of the component mms_getnamelist_service. The manipulation leads to generation of weak initialization vector. This vulnerability is traded as CVE-2024-25366. It is possible to launch the attack remotely. There is no exploit available.