CVE-2026-8479
Severity CVSS v4.0:
MEDIUM
Type:
CWE-476
NULL Pointer Dereference
Publication date:
26/05/2026
Last modified:
26/05/2026
Description
IEC 60870-5-104 used in bidirectional mode in RTU500 is vulnerable<br />
for a NULL pointer dereferencing, if a specially crafted<br />
sequence of messages is sent for a certain time, causing<br />
Denial of Service impact.<br />
Product is only affected if IEC 60870-5-104 functionality in<br />
bidirectional mode (BCI) is configured.
Impact
Base Score 4.0
6.90
Severity 4.0
MEDIUM



