Severity by source
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Network-reachable, unauthenticated, low-complexity DoS in the core processing loop with availability-only impact; no confidentiality or integrity effect, so C:N/I:N/A:H.
Primary rating from Vendor (mitre).
CVSS VectorVendor: mitre
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Lifecycle Timeline
3DescriptionCVE.org
In OpENer 2.3.0 (commit 76b95cf), a resource exhaustion (Denial of Service) vulnerability exists in its network processing loop.
AnalysisAI
Remote denial of service in OpENer 2.3.0 (commit 76b95cf), an open-source EtherNet/IP (CIP) communication stack, lets unauthenticated network attackers exhaust device resources through the network processing loop, rendering the affected industrial device unavailable. The flaw carries CVSS 7.5 (availability-only impact) and publicly available exploit code exists (referenced GitHub gist and issue #562), though it is not listed in CISA KEV and EPSS is low at 0.20% (10th percentile), indicating no observed widespread exploitation. …
Unlock full vulnerability intelligence
- Risk assessment & exploitation conditions
- Attack chain visualization
- Remediation with exact patch versions
- Threat intelligence from 22 sources
- Personal watchlist & email alerts
Free forever · No credit card required
Attack ChainAIDerived
Hypothetical attack flow derived from CVE metadata
Vulnerability AssessmentAI
| Exploitation | Exploitation requires network reachability to a device running OpENer 2.3.0 (commit 76b95cf) with its EtherNet/IP/CIP network listener active - the default operating mode for the stack (typically TCP/UDP 44818). … Additional conditions and limiting factors are described in the full assessment. |
| Risk Assessment | Signals are moderately aligned toward a real but non-emergency priority. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in. |
| Exploit Scenario | An attacker with network access to an EtherNet/IP device - for example a foothold on the OT network or an exposed device reachable over the enterprise/internet - sends a stream of crafted or high-volume connection requests to the OpENer listener (TCP/UDP 44818), driving the network processing loop to exhaust device resources. The device becomes unresponsive, cutting off legitimate PLC/SCADA communication and process visibility until it is restarted. … |
| Remediation | No vendor-released patched version is identified in the available data - EUVD lists affected versions as 'n/a' and the references point to an open issue (#562) rather than a tagged release, so track https://github.com/EIPStackGroup/OpENer/issues/562 for an upstream fix and rebuild embedded firmware once a patched commit is published. … Detailed patch versions, workarounds, and compensating controls in full report. |
Recommended ActionAI
Within 24 hours: Identify and catalog all systems running OpENer 2.3.0 (commit 76b95cf); assess network exposure and production criticality. …
Sign in for detailed remediation steps and compensating controls.
Threat intelligence, references, and detailed analysis are available after sign-in.
Same weakness CWE-400 – Uncontrolled Resource Consumption
View allSame technique Denial Of Service
View allShare
External POC / Exploit Code
Leaving vuln.today
EUVD-2026-42503
GHSA-c2q6-qqhw-6ggr