3 matches found
CVE-2023-7243
CVE-2023-7243 affects the ICSNPP – Ethercat Zeek Plugin for Zeek, specifically versions d78dda6 and prior. The root cause is an out-of-bounds write during Ethercat datagram analysis, which the connected sources describe as enabling arbitrary code execution. Public disclosures and ICS advisories (...
CVE-2023-7244
Summary: CVE-2023-7244 affects the ICSNPP - Ethercat Zeek Plugin for Zeek, specifically version d78dda6 and earlier. The issue is an out-of-bounds write in the primary analyses function used for Ethercat traffic, which could enable remote arbitrary code execution. Source documents consistently de...
CVE-2023-7242
CVE-2023-7242 affects the ICSNPP Ethercat Zeek Plugin for Zeek (versions d78dda6 and prior). The vulnerability is an out-of-bounds read in the Ethercat packet analysis path, which can crash the Zeek process and may leak information in memory. Mitigation: update to commit 3bca34c or later. ICS adv...