Severity Rating: MEDIUM
Software Affected
OpENer: 2.3
OpENer development commit 8c73bf3
Overview
Vulnerability has been reported in the Ethernet/IP server functionality
which could allow the remote attacker to perform a denial of service (DoS)
attack.
Description
A Vulnerability exists in the Ethernet/IP server functionality of the EIP
Stack Group OpENer 2.3 and development commit 8c73bf3due to insufficient
validation of user-supplied input in the Ethernet/IP server functionality.
An attacker could exploit this vulnerability by sending a specially crafted
request to an affected device.
Successful exploitation of this vulnerability could allow the attacker to
impact operations, leading to a denial of service (DoS) condition.
Solution
Apply appropriate updates as mentioned in:
Vendor Information
Cisco
References
Cisco
CVE Name
CVE-2020-13530
About Cert Advisory
We have created this blog to provide latest security advisory from the india cert for the security vulnerability, threats, attacks and patching required to mitigate any kind of cyber attacks.