Описание
An information disclosure vulnerability exists in the Ethernet/IP UDP handler functionality of EIP Stack Group OpENer 2.3 and development commit 8c73bf3. A specially crafted network request can lead to an out-of-bounds read.
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:opener_project:opener:2.3:*:*:*:*:*:*:*
EPSS
Процентиль: 56%
0.00342
Низкий
8.6 High
CVSS3
10 Critical
CVSS3
9.4 Critical
CVSS2
Дефекты
CWE-125
Связанные уязвимости
CVSS3: 10
github
больше 3 лет назад
An information disclosure vulnerability exists in the Ethernet/IP UDP handler functionality of EIP Stack Group OpENer 2.3 and development commit 8c73bf3. A specially crafted network request can lead to an out-of-bounds read.
EPSS
Процентиль: 56%
0.00342
Низкий
8.6 High
CVSS3
10 Critical
CVSS3
9.4 Critical
CVSS2
Дефекты
CWE-125