PT-2025-8933 · Libmodbus+1 · Libmodbus+1

Gabriele Quagliarella

Published

2024-10-18

Updated

2025-03-11

CVE-2024-10918

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions libmodbus version 3.1.10

Description A Stack-based Buffer Overflow issue exists in libmodbus, where the buffer allocated for the Modbus response can be overflowed if the function attempts to reply to a Modbus request with an unexpected length.

Recommendations For libmodbus version 3.1.10, consider updating to a newer version that addresses this issue, as no specific fix is provided for this version. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Stack Overflow

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-121CWE-787

Related Identifiers

BDU:2026-02730

CVE-2024-10918

DLA-4084-1

Affected Products

Debian

Libmodbus

PT-2025-8933 · Libmodbus+1 · Libmodbus+1

CVE-2024-10918

Weakness Enumeration

Related Identifiers

Affected Products

References · 21