Off-by-One Buffer Overflow in nanoMODBUS by debevv
CVE-2026-54410

7.8HIGH

Key Information:

Vendor: Debevv
Status: Nanomodbus
Vendor: CVE Published:; 14 June 2026

What is CVE-2026-54410?

The nanoMODBUS product, specifically version 1.23.0, contains an off-by-one buffer overflow in the recv_msg_header() function. This vulnerability allows remote, unauthenticated attackers to manipulate the Modbus/TCP server by sending a specially crafted MBAP frame. The exploit is made possible by setting the Length field to 255, which writes beyond the end of the 260-byte receive buffer. This leads to corruption of the adjacent buffer-index field within the nanoMODBUS state structure, potentially causing denial of service due to invalid memory accesses. Additionally, in systems without memory protection, it could result in information disclosure and writes to incorrect register addresses in the Write Multiple Registers (FC16) handler.

Affected Version(s)

nanoMODBUS 0 <= 1.23.0

References

https://github.com/debevv/nanoMODBUS

product

https://github.com/debevv/nanoMODBUS/blob/v1.23.0/nanomod...

product

https://cwe.mitre.org/data/definitions/193.html

technical-description

CVSS V4

Score:

7.8

Severity:

HIGH

Confidentiality:

Low

Integrity:

Low

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 14, 2026
Vulnerability Reserved
Jun 13, 2026

Credit

Burxonov Muslimbek

CVE-2026-54410 Data

JSON