CVE-2024-36844

libmodbus v3.1.6 was discovered to contain a use-after-free via the ctx->backend pointer. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted message sent to the unit-test-server.

Published: May 31, 2024
Updated: May 2, 2025
CVE: CVE-2024-36844
Exploit:

No technical information available.

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
libmodbus / libmodbus	3.1.6	3.1.6.x

https://github.com/stephane/libmodbus/issues/749

Vulnerability Database

289,697

CVE-2024-36844