CVE-2026-15105 | davenardella snap7 up to 1.4.3 ReadVar Request src/core/s7_server.cpp PerformFunctionRead deserialization (Issue 16)

SecurityVulns

A vulnerability identified as critical has been detected in davenardella snap7 up to 1.4.3. This affects the function TS7Worker::PerformFunctionRead of the file src/core/s7_server.cpp of the component ReadVar Request Handler. This manipulation causes deserialization.

This vulnerability is registered as CVE-2026-15105. The attack requires access to the local network. Furthermore, an exploit is available.

The project was informed of the problem early through an issue report but has not responded yet.VulDB Recent EntriesRead More