cbcvebase.
CVE-2022-43604
published 2023-03-16

CVE-2022-43604: An out-of-bounds write vulnerability exists in the GetAttributeList attribute_count_request functionality of EIP Stack Group OpENer development commit 58ee13c…

PriorityP271critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
14.37%
96.2th percentile
An out-of-bounds write vulnerability exists in the GetAttributeList attribute_count_request functionality of EIP Stack Group OpENer development commit 58ee13c. A specially crafted EtherNet/IP request can lead to an out-of-bounds write, potentially causing the server to crash or allow for remote code execution. An attacker can send a series of EtherNet/IP requests to trigger this vulnerability.

Affected

2 ranges
VendorProductVersion rangeFixed in
eip_stack_groupopener
opener_projectopener< 2022-10-182022-10-18

Detection & IOCsextracted from sources · hover to see the quote

snort
Snort rules 60983-60985
  • Exploit targets the GetAttributeList attribute_count_request functionality in EIP Stack Group OpENer; detect specially crafted EtherNet/IP requests targeting this function.
  • Monitor for exploitation attempts using Snort rules 60983–60985 via Cisco Secure Firewall Management Center or Snort.org; rules may be updated as additional vulnerability information becomes available.
  • ·Vulnerability is confirmed in a specific development commit of OpENer; only commit 58ee13c has been tested and confirmed exploitable.
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.