Vulnerability - CVE-2024-53429

Name

CVE-2024-53429

Source

NVD ( link)Debian ( link)

Description

Open62541 v1.4.6 is has an assertion failure in fuzz_binary_decode, which leads to a crash.

CWEs

CWE-617

Published Date

Nov 21, 2024

Updated Date

Jun 17, 2026

Workaround

Advisories

Analysis#

Affected Component

Analysis

open62541

Patched

Vulnerability Ratings#

7.5

CVSSv31

NaN

other

Others affected components#

Name

Project

Project Version

Version

Status

open62541

buildroot

2025.02.x

v1.3.15

Not Affected

open62541

buildroot

master

v1.3.15

Not Affected

libopen62541

openwrt

master

1.3.6-r2

Not Affected

libopen62541

openwrt

openwrt-25.12

1.3.6-r2

Not Affected

open62541

yocto

master

1.5.4

Not Affected

Resolved with patches#

open62541 (yocto:scarthgap)

Title

Author

Resolve

refactor(core): Validate Variant ArrayLength against its

Julius Pfrommer <julius.pfrommer@web.de>

CVE-2024-53429