CVE-2024-36980

Published Sep 18, 2024

Last updated 5 months ago

Overview

Description: An out-of-bounds read vulnerability exists in the OpenPLC Runtime EtherNet/IP PCCC parser functionality of OpenPLC_v3 b4702061dc14d1024856f71b4543298d77007b88. A specially crafted network request can lead to denial of service. An attacker can send a series of EtherNet/IP requests to trigger this vulnerability.This is the first instance of the incorrect comparison.
Source: talos-cna@cisco.com
NVD status: Analyzed

Risk scores

CVSS 3.1

Type: Primary
Base score: 7.5
Impact score: 3.6
Exploitability score: 3.9
Vector string: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Severity: HIGH

Weaknesses

talos-cna@cisco.com: CWE-125

Hype score: Not currently trending

[1day1line] CVE-2024-36980: OOB Read Vulnerability Discovered in OpenPLC The vulnerability was exploited by taking the return value of a function, -1, as a uint16_t type, bypassing validation, and using it as an argument to the memmove function https://t.co/k4XbNrJQQ2
@hackyboiz
13 Nov 2024
1817 Impressions
9 Retweets
26 Likes
7 Bookmarks
0 Replies
0 Quotes

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:openplcproject:openplc_v3_firmware:2024-04-04:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A91EED0D-892A-42FC-A437-5133E1F2407F"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

References