Balckgu1O

**Name of the Vulnerable Software and Affected Versions** libmodbus version 3.1.6 **Description** A heap overflow issue was discovered via the `modbus mapping free()` function. This issue affects libmodbus and can be exploited, but specific details about the number of potentially affected devices or real-world incidents are not provided. **Recommendations** For libmodbus version 3.1.6, consider disabling the `modbus mapping free()` function as a temporary workaround until a patch is available.

**Name of the Vulnerable Software and Affected Versions** libmodbus version 3.1.6 **Description** A use-after-free issue was discovered in libmodbus via the `ctx->backend` pointer. This issue allows attackers to cause a Denial of Service (DoS) by sending a crafted message to the unit-test-server. **Recommendations** For libmodbus version 3.1.6, consider disabling the use of the `ctx->backend` pointer until a patch is available to prevent potential Denial of Service (DoS) attacks. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** libmodbus version 3.1.6 **Description** The issue is related to an invalid pointer in the `modbus receive()` function, which allows attackers to cause a Denial of Service (DoS) via a crafted message sent to the unit-test-server. **Recommendations** For libmodbus version 3.1.6, consider disabling the `modbus receive()` function as a temporary workaround until a patch is available. Restrict access to the unit-test-server to minimize the risk of exploitation.