Dwilliams27

**Name of the Vulnerable Software and Affected Versions** nanoMODBUS versions prior to 1.23.0 **Description** A stack-based buffer overflow exists in the `recv read registers res()` function within `nanomodbus.c`. This occurs when a client invokes `nmbs read holding registers()` or `nmbs read input registers()`, as the library writes register data from the server response to the provided buffer based on the `byte count` field without verifying if it matches the requested quantity. A malicious Modbus TCP server can send a response with a `byte count` of 250, potentially overflowing the buffer with up to 248 bytes of attacker-controlled data and allowing remote code execution. **Recommendations** Update to a version later than 1.22.0.

**Name of the Vulnerable Software and Affected Versions** kosma minmea version 0.3.0 **Description** A stack buffer overflow exists in the `minmea scan()` function. The format specifier within this function copies NMEA field data into a buffer provided by the caller without utilizing a size parameter. This can be exploited when applications process untrusted input. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** lwjson version 1.8.1 **Description** Improper input validation in the streaming JSON parser (`lwjson stream.c`) occurs because the end-of-string detection logic incorrectly identifies escaped quote characters. The system only checks the immediately preceding character instead of counting consecutive backslashes, which prevents valid JSON strings ending with an escaped backslash from terminating parsing. A remote attacker can send well-formed JSON to cause applications using the `lwjson stream parse()` function to hang indefinitely, leading to a denial of service. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.