Fwd: [CIVN-2020-0438] Denial of Service Vulnerability in Cisco Talos Ethernet/IP server

1 year ago 73

Severity Rating: MEDIUM

Software Affected

OpENer: 2.3

OpENer development commit 8c73bf3

Overview

Vulnerability has been reported in the Ethernet/IP server functionality

which could allow the remote attacker to perform a denial of service (DoS)

attack.

Description

A Vulnerability exists in the Ethernet/IP server functionality of the EIP

Stack Group OpENer 2.3 and development commit 8c73bf3due to insufficient

validation of user-supplied input in the Ethernet/IP server functionality.

An attacker could exploit this vulnerability by sending a specially crafted

request to an affected device. 

Successful exploitation of this vulnerability could allow the attacker to

impact operations, leading to a denial of service (DoS) condition.

Solution

Apply appropriate updates as mentioned in: 

Vendor Information

Cisco 

References

Cisco 

CVE Name

CVE-2020-13530

About Cert Advisory

Related Posts

Read Entire Article