Lucene search
+L

25 matches found

euvd
euvd
added 2026/06/30 12:31 a.m.6 views

EUVD-2026-40246

A buffer overflow in the GetAttributeList function of EIPStackGroup OpENer commit 76b95c allows attackers to cause a Denial of Service DoS via supplying a crafted Common Packet Format CPF packet...

7.5CVSS6AI score0.00351EPSS
Exploits0References3
nvd
nvd
added 2026/06/29 10:16 p.m.12 views

CVE-2026-51221

A buffer overflow in the GetAttributeList function of EIPStackGroup OpENer commit 76b95c allows attackers to cause a Denial of Service DoS via supplying a crafted Common Packet Format CPF packet...

7.5CVSS0.00351EPSS
Exploits0References2
cvelist
cvelist
added 2026/06/29 12:0 a.m.21 views

CVE-2026-51221

A buffer overflow in the GetAttributeList function of EIPStackGroup OpENer commit 76b95c allows attackers to cause a Denial of Service DoS via supplying a crafted Common Packet Format CPF packet...

0.00351EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2026/06/29 12:0 a.m.8 views

PT-2026-53750

Name of the Vulnerable Software and Affected Versions EIPStackGroup OpENer commit 76b95c Description A buffer overflow occurs in the Get Attribute List function when processing a specially crafted Common Packet Format CPF packet, which is a standardized data structure used for communication. This...

6AI score0.00351EPSS
Exploits0References4
attackerkb
attackerkb
added 2026/06/29 12:0 a.m.6 views

CVE-2026-51221

A buffer overflow in the GetAttributeList function of EIPStackGroup OpENer commit 76b95c allows attackers to cause a Denial of Service DoS via supplying a crafted Common Packet Format CPF packet...

6AI score0.00351EPSS
Exploits0References3
redhatcve
redhatcve
added 2026/06/05 7:49 p.m.14 views

CVE-2026-38719

OpENer v2.3-558-g1e99582 contains an out-of-bounds read vulnerability in the Common Packet Format CPF parser, specifically in CreateCommonPacketFormatStructure in source/src/enetencap/cpf.c. A crafted ENIP/CPF message can supply an attacker-controlled itemcount value that is not consistently...

6.2CVSS5.5AI score0.00114EPSS
Exploits0References1
nvd
nvd
added 2026/05/18 5:16 p.m.18 views

CVE-2026-38719

OpENer v2.3-558-g1e99582 contains an out-of-bounds read vulnerability in the Common Packet Format CPF parser, specifically in CreateCommonPacketFormatStructure in source/src/enetencap/cpf.c. A crafted ENIP/CPF message can supply an attacker-controlled itemcount value that is not consistently...

6.2CVSS0.00114EPSS
Exploits0References2
attackerkb
attackerkb
added 2026/05/18 12:0 a.m.6 views

CVE-2026-38719

OpENer v2.3-558-g1e99582 contains an out-of-bounds read vulnerability in the Common Packet Format CPF parser, specifically in CreateCommonPacketFormatStructure in source/src/enetencap/cpf.c. A crafted ENIP/CPF message can supply an attacker-controlled itemcount value that is not consistently...

6.2CVSS5.8AI score0.00114EPSS
Exploits0References3
vulnrichment
vulnrichment
added 2026/05/18 12:0 a.m.8 views

CVE-2026-38719

OpENer v2.3-558-g1e99582 contains an out-of-bounds read vulnerability in the Common Packet Format CPF parser, specifically in CreateCommonPacketFormatStructure in source/src/enetencap/cpf.c. A crafted ENIP/CPF message can supply an attacker-controlled itemcount value that is not consistently...

5.8AI score0.00114EPSS
Exploits0References2
cvelist
cvelist
added 2026/05/18 12:0 a.m.44 views

CVE-2026-38719

OpENer v2.3-558-g1e99582 contains an out-of-bounds read vulnerability in the Common Packet Format CPF parser, specifically in CreateCommonPacketFormatStructure in source/src/enetencap/cpf.c. A crafted ENIP/CPF message can supply an attacker-controlled itemcount value that is not consistently...

0.00114EPSS
Exploits0References2
cnnvd
cnnvd
added 2026/05/18 12:0 a.m.10 views

OpENer 缓冲区错误漏洞

OpENer is an open-source industrial Ethernet protocol stack developed by the EIP Stack Group, supporting connections for I/O devices. Version OpENer v2.3-558-g1e99582 contains a buffer error vulnerability. This vulnerability stems from an out-of-bounds read in the CreateCommonPacketFormatStructur...

6.2CVSS6AI score0.00114EPSS
Exploits0References1
cve
cve
added 2026/05/18 12:0 a.m.21 views

CVE-2026-38719

OpENer 2.3-558-g1e99582 contains an out-of-bounds read in the CPF parser (CreateCommonPacketFormatStructure() in source/src/enet_encap/cpf.c). A crafted ENIP/CPF message can supply an attacker-controlled item_count that is not consistently validated against the remaining data_length of the CPF sl...

6.2CVSS5.8AI score0.00114EPSS
Exploits0References2
euvd
euvd
added 2026/05/18 12:0 a.m.19 views

EUVD-2026-30780

OpENer v2.3-558-g1e99582 contains an out-of-bounds read vulnerability in the Common Packet Format CPF parser, specifically in CreateCommonPacketFormatStructure in source/src/enetencap/cpf.c. A crafted ENIP/CPF message can supply an attacker-controlled itemcount value that is not consistently...

6.2CVSS5.8AI score0.00114EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2026/05/18 12:0 a.m.17 views

PT-2026-41681

OpENer v2.3-558-g1e99582 contains an out-of-bounds read vulnerability in the Common Packet Format CPF parser, specifically in CreateCommonPacketFormatStructure in source/src/enet encap/cpf.c. A crafted ENIP/CPF message can supply an attacker-controlled item count value that is not consistently...

5.8AI score0.00114EPSS
Exploits0References3
ubuntucve
ubuntucve
added 2024/06/19 2:15 p.m.27 views

CVE-2024-38578

In the Linux kernel, the following vulnerability has been resolved: ecryptfs: Fix buffer size for tag 66 packet The 'TAG 66 Packet Format' description is missing the cipher code and checksum fields that are packed into the message packet. As a result, the buffer allocated for the packet is 3 byte...

7.8CVSS6.5AI score0.00263EPSS
Exploits0References28
cve
cve
added 2024/06/19 1:37 p.m.126 views

CVE-2024-38578

The CVE-2024-38578 issue is a Linux kernel vulnerability in ecryptfs: the buffer for the TAG 66 packet was 3 bytes too small, causing a potential write past the end (KASAN slab-out-of-bounds). The fix increases the allocation size to ensure the entire packet fits, addressing the bug described in ...

7.8CVSS6.7AI score0.00263EPSS
Exploits0References12Affected Software1
osv
osv
added 2024/06/19 1:37 p.m.15 views

CVE-2024-38578 ecryptfs: Fix buffer size for tag 66 packet

In the Linux kernel, the following vulnerability has been resolved: ecryptfs: Fix buffer size for tag 66 packet The 'TAG 66 Packet Format' description is missing the cipher code and checksum fields that are packed into the message packet. As a result, the buffer allocated for the packet is 3 byte...

7.8CVSS6.2AI score0.00263EPSS
Exploits0References15
cvelist
cvelist
added 2024/06/19 1:37 p.m.25 views

CVE-2024-38578 ecryptfs: Fix buffer size for tag 66 packet

In the Linux kernel, the following vulnerability has been resolved: ecryptfs: Fix buffer size for tag 66 packet The 'TAG 66 Packet Format' description is missing the cipher code and checksum fields that are packed into the message packet. As a result, the buffer allocated for the packet is 3 byte...

0.00263EPSS
Exploits0References9
carbonblack
carbonblack
added 2020/02/21 2:27 a.m.89 views

Threat Analysis: Active C2 Discovery Using Protocol Emulation Part2 (Winnti 4.0)

Summary The VMware Carbon Black Threat Analysis Unit TAU previously released a blog post documenting the Winnti version 4.0 malware. The new command and control C2 protocol that was implemented in one of the 4.0 samples was completely different from the existing understanding of the 3.0 protocol...

Exploits0
cnvd
cnvd
added 2018/02/08 12:0 a.m.3 views

CCN-lite memory leak vulnerability (CNVD-2018-03676)

CCN-lite is a lightweight and functionally interoperable implementation of the CCNx protocol for XEROX PARC. A memory leak vulnerability exists in the ccnlappRX function in ccnl-uapi.c in versions of CCN-lite prior to 2.0.0. An attacker could cause a denial of service memory consumption by...

7.5CVSS6.7AI score0.01377EPSS
Exploits0References1
Rows per page
Query Builder