Description
A vulnerability has been found in Modbus Tools Modbus Slave up to 7.5.1 and classified as critical. Affected by this vulnerability is an unknown functionality of the file mbslave.exe of the component mbs File Handler. The manipulation leads to buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-217021 was assigned to this vulnerability.
References (4)
Core 4
Core References
Third Party Advisory vdb-entry
https://vuldb.com/?id.217021
Third Party Advisory signature
permissions-required
https://vuldb.com/?ctiid.217021
Exploit, Patch, Third Party Advisory related
https://github.com/Durian1546/vul/blob/main/webray.com.cn/Modbus%20Slave/Modbus%20Slave%20(version%207.5.1%20and%20earlier)%20mbs%20file%20has%20a%20buffer%20overflow%20vulnerability.md
Third Party Advisory exploit
https://github.com/Durian1546/vul/blob/main/webray.com.cn/Modbus%20Slave/poc/poc.mbs
Scores
CVSS v3
6.3
EPSS
0.0036
EPSS Percentile
57.9%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
Details
CWE
CWE-120
Status
published
Products (1)
modbustools/modbus_slave
< 7.5.1
Published
Dec 30, 2022
Tracked Since
Feb 18, 2026