greprules.io
Sign inSubmit rule
Explore/cve-2026-41475-bacnet-deprecated-decode-tag-number-and-value-oob-read

CVE-2026-41475: Bacnet Deprecated Decode Tag Number And Value Oob Read

Use of the deprecated decode_tag_number_and_value() function detected. This helper accepts no apdu_size parameter and performs NO bounds checking on the input buffer. It unconditionally reads apdu[0] (and apdu[1] for the extended-tag form) which causes 1-7 byte out-of-bounds reads when the caller-supplied buffer is truncated (CVE-2026-41475). Use the bounds-

Provally CuratedPublic repositoryHighHigh confidenceVerifiedApache-2.0c
greprules fetch cve-2026-41475-bacnet-deprecated-decode-tag-number-and-value-oob-read --engine opengrep

Description

Use of the deprecated decode_tag_number_and_value() function detected. This helper accepts no apdu_size parameter and performs NO bounds checking on the input buffer. It unconditionally reads apdu[0] (and apdu[1] for the extended-tag form) which causes 1-7 byte out-of-bounds reads when the caller-supplied buffer is truncated (CVE-2026-41475). Use the bounds-

Detection target

Not provided

Recommended fix

Not provided

False-positive notes

Not provided

License
Apache-2.0
Source context
Public repository
Source
Provally CVE rule catalog
Validation status
Verified
Trust signals
108 downloads0 direct108 via packs
· 0 stars · Trust score 95How trust works
Included packs
2 packs

Community feedback

Sign in to report false positives, mark this rule useful, or suggest metadata improvements.

Mark usefulReport false positiveSuggest metadata