Vulnerabilities > CVE-2021-27498 - Reachable Assertion vulnerability in Opener Project Opener

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

opener-project

CWE-617

NVD

Published: 2022-05-12

Updated: 2022-05-23

Summary

A specifically crafted packet sent by an attacker to EIPStackGroup OpENer EtherNet/IP commits and versions prior to Feb 10, 2021 may result in a denial-of-service condition.

Vulnerable Configurations

Part	Description	Count
Application	Opener_Project Opener Project Opener 1.2.0 Opener Project Opener 2.1.0 Opener Project Opener 2.2.0 Opener Project Opener 2.2.1 Opener Project Opener 2.3	5

Common Weakness Enumeration (CWE)

CWE-617 - Reachable Assertion

References

https://github.com/EIPStackGroup/OpENer
https://www.cisa.gov/uscert/ics/advisories/icsa-21-105-02