CVE-2024-34057
HIGHTriangle Microworks TMW IEC 61850 Client <12.2.0 - Buffer Overflow
Title source: llmDescription
Triangle Microworks TMW IEC 61850 Client source code libraries before 12.2.0 lack a buffer size check when processing received messages. The resulting buffer overflow can cause a crash, resulting in a denial of service.
References (2)
Core 2
Core References
Release Notes
https://trianglemicroworks.com/products/source-code-libraries/iec-61850-scl-pages/what%27s-new
Third Party Advisory, US Government Resource
https://www.cisa.gov/news-events/ics-advisories/icsa-24-256-16
Scores
CVSS v3
7.5
EPSS
0.0009
EPSS Percentile
25.5%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
yes
Technical Impact
partial
Details
CWE
CWE-120
Status
published
Products (6)
siemens/sicam_a8000_firmware
< 05.30
siemens/sicam_egs_firmware
< 05.30
siemens/sicam_s8000
< 05.30
siemens/sicam_scc_firmware
< 10.0
siemens/sitipe_at
trianglemicroworks/iec_61850_source_code_library
< 12.2.0
Published
Sep 18, 2024
Tracked Since
Feb 18, 2026