{"id":"CVE-2019-14463","details":"An issue was discovered in libmodbus before 3.0.7 and 3.1.x before 3.1.5. There is an out-of-bounds read for the MODBUS_FC_WRITE_MULTIPLE_REGISTERS case, aka VD-1301.","modified":"2026-04-11T08:55:58.835627Z","published":"2019-07-31T23:15:11.013Z","references":[{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HAGHQFJTJCMYHW553OUWJ3YIJR6PJHB7/"},{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PRAQZXGAZY6UGWZ6CD33QEFLL7AWW233/"},{"type":"ADVISORY","url":"https://libmodbus.org/2019/stable-and-development-releases/"},{"type":"ADVISORY","url":"https://lists.debian.org/debian-lts-announce/2021/11/msg00020.html"},{"type":"FIX","url":"https://github.com/stephane/libmodbus/commit/5ccdf5ef79d742640355d1132fa9e2abc7fbaefc"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/stephane/libmodbus","events":[{"introduced":"0"},{"fixed":"7098bed95c1b3c19922894351dce1febfe06dec5"},{"introduced":"a66b1c1f6db1d64933c782e16fb37a861d2fddb6"},{"fixed":"890e689b9e6a806e26d7072e142cf2b3bda62755"},{"fixed":"5ccdf5ef79d742640355d1132fa9e2abc7fbaefc"}],"database_specific":{"versions":[{"introduced":"0"},{"fixed":"3.0.7"},{"introduced":"3.1.0"},{"fixed":"3.1.5"}]}}],"versions":["v1.2.2","v2.1.0","v2.9.1","v2.9.2","v2.9.3","v2.9.4","v3.0.0","v3.0.1","v3.0.2","v3.0.3","v3.0.4","v3.0.5","v3.0.6","v3.1.0","v3.1.2","v3.1.3","v3.1.4"],"database_specific":{"unresolved_ranges":[{"events":[{"introduced":"0"},{"last_affected":"29"}]},{"events":[{"introduced":"0"},{"last_affected":"30"}]},{"events":[{"introduced":"0"},{"last_affected":"9.0"}]}],"vanir_signatures":[{"signature_type":"Function","id":"CVE-2019-14463-a09a4a45","digest":{"length":8355,"function_hash":"323593532108721994701969131287860941397"},"deprecated":false,"source":"https://github.com/stephane/libmodbus/commit/5ccdf5ef79d742640355d1132fa9e2abc7fbaefc","target":{"function":"modbus_reply","file":"src/modbus.c"},"signature_version":"v1"},{"signature_type":"Line","id":"CVE-2019-14463-df7c1ff9","digest":{"line_hashes":["279407068311027367221353942970198111362","96805696654878289283400945749832764755","264315136239087958184637419332994110289","246930806917692553678028513742674422724","35012889513330199115050305978215585344","90122997212441459616915173969254259899","215679700694705208098697681226269763170","92971725741101217226280423154663327420","136676668559232837800794350595617926995","147375281705634079108180024146503777876","35761847310492483641475584380183528662","136615255643659512426378481080580633623"],"threshold":0.9},"deprecated":false,"source":"https://github.com/stephane/libmodbus/commit/5ccdf5ef79d742640355d1132fa9e2abc7fbaefc","target":{"file":"src/modbus.c"},"signature_version":"v1"}],"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-14463.json","vanir_signatures_modified":"2026-04-11T08:55:58Z"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H"}]}