VYPR

IEC104

by airpig2011

CVEs (2)

  • CVE-2025-63929HigNov 12, 2025
    risk 0.49cvss 7.5epss 0.00

    A null pointer dereference vulnerability exists in airpig2011 IEC104 thru Commit be6d841 (2019-07-08). When multiple threads enqueue elements concurrently via IEC10X_PrioEnQueue, the function may dereference a null or freed queue pointer, resulting in a segmentation fault and…

  • CVE-2025-63927MedNov 12, 2025
    risk 0.26cvss 4.0epss 0.00

    A heap-use-after-free vulnerability exists in airpig2011 IEC104 thru Commit be6d841 (2019-07-08). During multi-threaded client execution, the function Iec10x_Scheduled can access memory that has already been freed, potentially causing program crashes or undefined behavior. This…