HIGH
debevv
CVE published 2026-06-14
CVE-2026-54410
CVE-2026-54410 is a HIGH severity vulnerability in nanoMODBUS through v1.23.0. The vulnerability is caused by an off-by-one buffer overflow in the recv_msg_header() function of the Modbus/TCP server. This allows remote unauthenticated attackers to write one attacker-controlled byte past the end of the 260-byte receive buffer by sending a crafted MBAP frame whose Length field is set to 255. The overflow co [truncated]