CVE-2026-26264
- EPSS 0.05%
- Veröffentlicht 13.02.2026 18:14:30
- Zuletzt bearbeitet 18.02.2026 18:48:15
BACnet Stack is a BACnet open source protocol stack C library for embedded systems. Prior to 1.5.0rc4 and 1.4.3rc2, a malformed WriteProperty request can trigger a length underflow in the BACnet stack, leading to an out‑of‑bounds read and a crash (Do...
CVE-2026-21878
- EPSS 0.05%
- Veröffentlicht 13.02.2026 18:10:26
- Zuletzt bearbeitet 18.02.2026 18:49:16
BACnet Stack is a BACnet open source protocol stack C library for embedded systems. Prior to 1.5.0.rc3, a vulnerability has been discovered in BACnet Stack's file writing functionality where there is no validation of user-provided file paths, allowin...
CVE-2026-21870
- EPSS 0.01%
- Veröffentlicht 13.02.2026 17:58:37
- Zuletzt bearbeitet 18.02.2026 18:49:07
BACnet Protocol Stack library provides a BACnet application layer, network layer and media access (MAC) layer communications services. In 1.4.2, 1.5.0.rc2, and earlier, an off-by-one stack-based buffer overflow in the ubasic interpreter causes a cras...
CVE-2025-66624
- EPSS 0.08%
- Veröffentlicht 05.12.2025 18:36:26
- Zuletzt bearbeitet 18.02.2026 18:21:54
BACnet Protocol Stack library provides a BACnet application layer, network layer and media access (MAC) layer communications services. Prior to 1.5.0.rc2, The npdu_is_expected_reply function in src/bacnet/npdu.c indexes request_pdu[offset+2/3/5] and ...
CVE-2023-51773
- EPSS 0.37%
- Veröffentlicht 29.02.2024 01:42:05
- Zuletzt bearbeitet 23.05.2025 15:39:17
BACnet Stack before 1.3.2 has a decode function APDU buffer over-read in bacapp_decode_application_data in bacapp.c.