Ghostwire

CVE-2026-16225: A security flaw has been discovered in davenardella snap7 up to 1.4.3. The impacted element is the function...

MEDIUM CVSS 6.3 Exploit Available 1 PoC

Published: July 19, 2026 | Last Modified: July 19, 2026

Description

A security flaw has been discovered in davenardella snap7 up to 1.4.3. The impacted element is the function TSnap7Peer::NegotiatePDULength of the file src/core/s7_peer.cpp. The manipulation of the argument PDULength results in out-of-bounds write. The attack can be executed remotely. The exploit has been released to the public and may be used for attacks.

Ghostwire Analysis — What This Means Practically

This analysis is generated by Ghostwire from NVD, CISA KEV, EPSS, and open-source intelligence data. Verify findings through primary sources before acting.

Proof-of-Concept Exploits (1)

References