all InfoSec news
Vulnerability Spotlight: EIP Stack Group OpENer open to two remote code execution vulnerabilities
Malware Analysis, News and Indicators - Latest topics malware.news
Jared Rittle of Cisco Talos discovered these vulnerabilities.
Cisco Talos recently discovered three vulnerabilities in EIP Stack Group OpENer, an ethernet/IP stack for I/O adapter devices, that could allow an attacker to cause a targeted server to crash or open the door to remote code execution.
Two of the vulnerabilities, TALOS-2022-1662 (CVE-2022-43605) and TALOS-2022-1661 (CVE-2022-43604) are considered to be considered of critical importance, with a CVSS score of a maximum 10 out of 10.
An adversary could exploit either of …
cisco cisco talos code code execution crash critical cve cvss devices door ethernet ip stack jared remote code remote code execution score server spotlight talos vulnerabilities vulnerability vulnerability spotlight