Lucene search
K

64 matches found

Cvelist
Cvelist
added 2024/03/01 8:17 p.m.26 views

CVE-2023-7242 Ethercat Zeek Plugin Out-of-bounds Read

Industrial Control Systems Network Protocol Parsers ICSNPP - Ethercat Zeek Plugin versions d78dda6 and prior are vulnerable to out-of-bounds read during the process of analyzing a specific Ethercat packet. This could allow an attacker to crash the Zeek process and leak some information in memory...

8.2CVSS8.2AI score0.00478EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/03/01 8:17 p.m.16 views

CVE-2023-7242 Ethercat Zeek Plugin Out-of-bounds Read

Industrial Control Systems Network Protocol Parsers ICSNPP - Ethercat Zeek Plugin versions d78dda6 and prior are vulnerable to out-of-bounds read during the process of analyzing a specific Ethercat packet. This could allow an attacker to crash the Zeek process and leak some information in memory...

8.2CVSS8.1AI score0.00478EPSS
Exploits0References1
CVE
CVE
added 2024/03/01 8:16 p.m.95 views

CVE-2023-7243

CVE-2023-7243 affects the ICSNPP – Ethercat Zeek Plugin for Zeek, specifically versions d78dda6 and prior. The root cause is an out-of-bounds write during Ethercat datagram analysis, which the connected sources describe as enabling arbitrary code execution. Public disclosures and ICS advisories (...

9.8CVSS9.6AI score0.00819EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/03/01 8:16 p.m.23 views

CVE-2023-7243 Ethercat Zeek Plugin Out-of-bounds Write

Industrial Control Systems Network Protocol Parsers ICSNPP - Ethercat Zeek Plugin versions d78dda6 and prior are vulnerable to out-of-bounds write while analyzing specific Ethercat datagrams. This could allow an attacker to cause arbitrary code execution...

9.8CVSS9.7AI score0.00819EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/03/01 8:16 p.m.14 views

CVE-2023-7243 Ethercat Zeek Plugin Out-of-bounds Write

Industrial Control Systems Network Protocol Parsers ICSNPP - Ethercat Zeek Plugin versions d78dda6 and prior are vulnerable to out-of-bounds write while analyzing specific Ethercat datagrams. This could allow an attacker to cause arbitrary code execution...

9.8CVSS7.3AI score0.00819EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/03/01 8:14 p.m.18 views

CVE-2023-7244 Ethercat Zeek Plugin Out-of-bounds Write

Industrial Control Systems Network Protocol Parsers ICSNPP - Ethercat Zeek Plugin versions d78dda6 and prior are vulnerable to out-of-bounds write in their primary analyses function for Ethercat communication packets. This could allow an attacker to cause arbitrary code execution...

9.8CVSS7.3AI score0.00819EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/03/01 8:14 p.m.23 views

CVE-2023-7244 Ethercat Zeek Plugin Out-of-bounds Write

Industrial Control Systems Network Protocol Parsers ICSNPP - Ethercat Zeek Plugin versions d78dda6 and prior are vulnerable to out-of-bounds write in their primary analyses function for Ethercat communication packets. This could allow an attacker to cause arbitrary code execution...

9.8CVSS9.7AI score0.00819EPSS
Exploits0References1
CVE
CVE
added 2024/03/01 8:14 p.m.84 views

CVE-2023-7244

Summary: CVE-2023-7244 affects the ICSNPP - Ethercat Zeek Plugin for Zeek, specifically version d78dda6 and earlier. The issue is an out-of-bounds write in the primary analyses function used for Ethercat traffic, which could enable remote arbitrary code execution. Source documents consistently de...

9.8CVSS9.6AI score0.00819EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2024/03/01 12:0 a.m.7 views

Industrial Control Systems Network Protocol Parsers - Ethercat Zeek Plugin Buffer Error Vulnerability

Industrial Control Systems Network Protocol Parsers - Ethercat Zeek Plugin is a Zeek plugin from Zeek open source. A buffer error vulnerability exists in Industrial Control Systems Network Protocol Parsers - Ethercat Zeek Plugin d78dda6 and prior versions, which stems from susceptibility to...

9.8CVSS7.5AI score0.00819EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/03/01 12:0 a.m.5 views

Industrial Control Systems Network Protocol Parsers - Ethercat Zeek Plugin Buffer Error Vulnerability

Industrial Control Systems Network Protocol Parsers - Ethercat Zeek Plugin is a Zeek plugin from Zeek open source. A buffer error vulnerability exists in Industrial Control Systems Network Protocol Parsers - Ethercat Zeek Plugin d78dda6 and prior versions, which stems from susceptibility to...

9.8CVSS7.5AI score0.00819EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/03/01 12:0 a.m.4 views

Industrial Control Systems Network Protocol Parsers - Ethercat Zeek Plugin Buffer Error Vulnerability

Industrial Control Systems Network Protocol Parsers - Ethercat Zeek Plugin is a Zeek plugin from Zeek open source. A security vulnerability exists in Industrial Control Systems Network Protocol Parsers - Ethercat Zeek Plugin d78dda6 and prior versions, which stems from susceptibility to...

8.2CVSS6.7AI score0.00478EPSS
Exploits0References2
ICS
ICS
added 2024/02/20 7:0 a.m.62 views

ICSNPP - Ethercat Zeek Plugin

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION : Exploitable remotely/low attack complexity Vendor : CISA Equipment : Industrial Control Systems Network Protocol Parsers ICSNPP - Ethercat Plugin for Zeek Vulnerabilities : Out-of-bounds Write, Out-of-bounds Read 2. RISK EVALUATION Successful...

9.8CVSS9.9AI score0.00819EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2024/02/20 12:0 a.m.6 views

PT-2024-2141 · Zeek · Icsnpp - Ethercat Zeek Plugin

Name of the Vulnerable Software and Affected Versions: Industrial Control Systems Network Protocol Parsers ICSNPP - Ethercat Zeek Plugin versions d78dda6 and prior Description: The issue is related to an out-of-bounds write in the primary analyses function for Ethercat communication packets. This...

10CVSS8.7AI score0.00819EPSS
Exploits0References10
Positive Technologies
Positive Technologies
added 2024/02/20 12:0 a.m.7 views

PT-2024-2175 · Zeek · Zeek Plugin

Name of the Vulnerable Software and Affected Versions: Zeek Plugin versions d78dda6 and prior Description: The issue is related to an out-of-bounds read during the analysis of a specific Ethercat packet, which could allow an attacker to crash the Zeek process and leak some information in memory...

8.5CVSS7AI score0.00478EPSS
Exploits0References10
Positive Technologies
Positive Technologies
added 2024/02/20 12:0 a.m.13 views

PT-2024-2142 · Zeek · Icsnpp - Ethercat Zeek Plugin

Name of the Vulnerable Software and Affected Versions: Industrial Control Systems Network Protocol Parsers ICSNPP - Ethercat Zeek Plugin versions d78dda6 and prior Description: The issue is related to an out-of-bounds write while analyzing specific Ethercat datagrams, which could allow an attacke...

9.8CVSS7.9AI score0.00819EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2023/05/25 12:0 a.m.23 views

Wireshark 1.4.x < 1.4.15 Multiple Vulnerabilities (macOS)

The version of Wireshark installed on the remote macOS / Mac OS X host is prior to 1.4.15. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-1.4.15 advisory. - Buffer overflow in epan/dissectors/packet-rtps2.c in the RTPS2 dissector in Wireshark 1.4.x before...

3.3CVSS7.2AI score0.02126EPSS
Exploits4References25
SUSE CVE
SUSE CVE
added 2023/02/15 5:44 a.m.1 views

SUSE CVE-2012-4293

plugins/ethercat/packet-ecatmb.c in the EtherCAT Mailbox dissector in Wireshark 1.4.x before 1.4.15, 1.6.x before 1.6.10, and 1.8.x before 1.8.2 does not properly handle certain integer fields, which allows remote attackers to cause a denial of service application exit via a malformed packet...

3.3CVSS7.4AI score0.01186EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2021/08/10 12:0 a.m.45 views

Beckhoff Twincat Exposure of Sensitive Information to an Unauthorized Actor

Beckhoff's TwinCAT RT network driver for Intel 8254x and 8255x is providing EtherCAT functionality. The driver implements real-time features. Except for Ethernet frames sent from real-time functionality, all other Ethernet frames sent through the driver are not padded if their payload is less tha...

5CVSS0.8AI score0.01014EPSS
Exploits0References2
NVD
NVD
added 2020/06/16 2:15 p.m.25 views

CVE-2020-12494

Beckhoff's TwinCAT RT network driver for Intel 8254x and 8255x is providing EtherCAT functionality. The driver implements real-time features. Except for Ethernet frames sent from real-time functionality, all other Ethernet frames sent through the driver are not padded if their payload is less tha...

5.3CVSS0.01014EPSS
Exploits0References1
OSV
OSV
added 2020/06/16 2:15 p.m.5 views

CVE-2020-12494

Beckhoff's TwinCAT RT network driver for Intel 8254x and 8255x is providing EtherCAT functionality. The driver implements real-time features. Except for Ethernet frames sent from real-time functionality, all other Ethernet frames sent through the driver are not padded if their payload is less tha...

5.3CVSS5.8AI score0.01014EPSS
Exploits0References1
Rows per page
Query Builder