Bacnetstack

Bacnet Stack

9 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2026-41503

Exploit
  • EPSS 0.42%
  • Veröffentlicht 24.04.2026 19:41:44
  • Zuletzt bearbeitet 28.04.2026 15:30:15

BACnet Stack is a BACnet open source protocol stack C library for embedded systems. Prior to 1.4.3, an out-of-bounds read vulnerability in bacnet-stack's ReadPropertyMultiple service property decoder allows unauthenticated remote attackers to read pa...

7.5

CVE-2026-41502

Exploit
  • EPSS 0.4%
  • Veröffentlicht 24.04.2026 19:40:43
  • Zuletzt bearbeitet 28.04.2026 15:35:34

BACnet Stack is a BACnet open source protocol stack C library for embedded systems. Prior to 1.4.3, an off-by-one out-of-bounds read vulnerability in bacnet-stack's ReadPropertyMultiple service decoder allows unauthenticated remote attackers to read ...

9.1

CVE-2026-41475

Exploit
  • EPSS 0.48%
  • Veröffentlicht 24.04.2026 19:39:52
  • Zuletzt bearbeitet 28.04.2026 15:36:04

BACnet Stack is a BACnet open source protocol stack C library for embedded systems. Prior to 1.4.3, an out-of-bounds read vulnerability in bacnet-stack's WritePropertyMultiple service decoder allows unauthenticated remote attackers to read past alloc...

3.7

CVE-2026-40279

Exploit
  • EPSS 0.24%
  • Veröffentlicht 21.04.2026 16:29:16
  • Zuletzt bearbeitet 27.04.2026 19:49:23

BACnet Stack is a BACnet open source protocol stack C library for embedded systems. Prior to 1.4.3, decode_signed32() in src/bacnet/bacint.c reconstructs a 32-bit signed integer from four APDU bytes using signed left shifts. When any of the four byte...

8.1

CVE-2026-26264

Exploit
  • EPSS 0.37%
  • Veröffentlicht 13.02.2026 18:14:30
  • Zuletzt bearbeitet 18.02.2026 18:48:15

BACnet Stack is a BACnet open source protocol stack C library for embedded systems. Prior to 1.5.0rc4 and 1.4.3rc2, a malformed WriteProperty request can trigger a length underflow in the BACnet stack, leading to an out‑of‑bounds read and a crash (Do...

7.5

CVE-2026-21878

Exploit
  • EPSS 0.36%
  • Veröffentlicht 13.02.2026 18:10:26
  • Zuletzt bearbeitet 18.02.2026 18:49:16

BACnet Stack is a BACnet open source protocol stack C library for embedded systems. Prior to 1.5.0.rc3, a vulnerability has been discovered in BACnet Stack's file writing functionality where there is no validation of user-provided file paths, allowin...

5.5

CVE-2026-21870

Exploit
  • EPSS 0.24%
  • Veröffentlicht 13.02.2026 17:58:37
  • Zuletzt bearbeitet 18.02.2026 18:49:07

BACnet Protocol Stack library provides a BACnet application layer, network layer and media access (MAC) layer communications services. In 1.4.2, 1.5.0.rc2, and earlier, an off-by-one stack-based buffer overflow in the ubasic interpreter causes a cras...

7.5

CVE-2025-66624

Exploit
  • EPSS 0.35%
  • Veröffentlicht 05.12.2025 18:36:26
  • Zuletzt bearbeitet 18.02.2026 18:21:54

BACnet Protocol Stack library provides a BACnet application layer, network layer and media access (MAC) layer communications services. Prior to 1.5.0.rc2, The npdu_is_expected_reply function in src/bacnet/npdu.c indexes request_pdu[offset+2/3/5] and ...

9.1

CVE-2023-51773

  • EPSS 1.05%
  • Veröffentlicht 29.02.2024 01:42:05
  • Zuletzt bearbeitet 23.05.2025 15:39:17

BACnet Stack before 1.3.2 has a decode function APDU buffer over-read in bacapp_decode_application_data in bacapp.c.