<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<rss xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/" version="2.0">
  <channel>
    <title>Most recent sightings.</title>
    <link>https://vulnerability.circl.lu</link>
    <description>Contains only the most 10 recent sightings.</description>
    <docs>http://www.rssboard.org/rss-specification</docs>
    <generator>python-feedgen</generator>
    <language>en</language>
    <lastBuildDate>Wed, 15 Jul 2026 13:38:28 +0000</lastBuildDate>
    <item>
      <title>1aaedd94-f3e1-4013-979f-eb375fb059ba</title>
      <link>https://vulnerability.circl.lu/sighting/1aaedd94-f3e1-4013-979f-eb375fb059ba/export</link>
      <description>{"uuid": "1aaedd94-f3e1-4013-979f-eb375fb059ba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-51540", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mqmqbggzbk24", "content": "CVE-2026-51540\nThe OpENer messaging software is at risk of a critical memory corruption issue when handling certain types of messages. This could lead to unexpected crashes or data loss. Update to the latest version to\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#CVE #infosec", "creation_timestamp": "2026-07-14T17:30:06.419030Z"}</description>
      <content:encoded>{"uuid": "1aaedd94-f3e1-4013-979f-eb375fb059ba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-51540", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mqmqbggzbk24", "content": "CVE-2026-51540\nThe OpENer messaging software is at risk of a critical memory corruption issue when handling certain types of messages. This could lead to unexpected crashes or data loss. Update to the latest version to\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#CVE #infosec", "creation_timestamp": "2026-07-14T17:30:06.419030Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/1aaedd94-f3e1-4013-979f-eb375fb059ba/export</guid>
      <pubDate>Tue, 14 Jul 2026 17:30:06 +0000</pubDate>
    </item>
    <item>
      <title>66df8721-bae8-4af4-9187-ede53bf21d27</title>
      <link>https://vulnerability.circl.lu/sighting/66df8721-bae8-4af4-9187-ede53bf21d27/export</link>
      <description>{"uuid": "66df8721-bae8-4af4-9187-ede53bf21d27", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-51540", "type": "seen", "source": "https://gist.github.com/MrAlaskan/5e0c2af7f4a1d188814c7fa8f812c8da", "content": "# Security Advisory: CVE-2026-51540\n\n## Vulnerability Information\n* **CVE ID:** CVE-2026-51540\n* **Vendor:** EIPStackGroup\n* **Product:** OpENer (Version 2.3.0, commit 76b95cf)\n* **Vulnerability Type:** CWE-191: Integer Underflow; CWE-125: Out-of-bounds Read\n* **Attack Type:** Remote, Unauthenticated\n* **Impact:** Denial of Service (DoS); Potential Code Execution\n\n## Description\nA memory corruption vulnerability exists in the handling of connected explicit messages in OpENer 2.3.0. A remotely crafted `SendUnitData` request may trigger an integer underflow during message length processing, causing invalid length handling and out-of-bounds memory access.\n\n## Affected Component\nThe vulnerability affects connected message parsing and EPATH decoding logic, including `source/src/enet_encap/cpf.c`, `source/src/cip/cipmessagerouter.c`, and `source/src/cip/cipcommon.c`, specifically the `NotifyConnectedCommonPacketFormat`, `CreateMessageRouterRequestStructure`, and `DecodePaddedEPath` functions.\n\n## Attack Vectors\nAn unauthenticated, remote attacker with network access to the target OpENer instance can exploit this vulnerability by connecting to the EtherNet/IP TCP port, typically TCP/44818, registering a session, and establishing a standard CIP connection.\n\nThe attacker can then send a crafted `SendUnitData` request containing malformed length and path fields. Due to insufficient validation of connected message length values, the crafted request may cause an integer underflow and allow invalid data to reach the EPATH decoding logic.\n\nSuccessful exploitation can crash the OpENer process, resulting in a Denial of Service condition. Depending on the runtime environment and memory layout, further impact may be possible.\n\n## References\n* Project: https://github.com/EIPStackGroup/OpENer\n* GitHub Issue: https://github.com/EIPStackGroup/OpENer/issues/568", "creation_timestamp": "2026-07-09T03:43:26.325062Z"}</description>
      <content:encoded>{"uuid": "66df8721-bae8-4af4-9187-ede53bf21d27", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-51540", "type": "seen", "source": "https://gist.github.com/MrAlaskan/5e0c2af7f4a1d188814c7fa8f812c8da", "content": "# Security Advisory: CVE-2026-51540\n\n## Vulnerability Information\n* **CVE ID:** CVE-2026-51540\n* **Vendor:** EIPStackGroup\n* **Product:** OpENer (Version 2.3.0, commit 76b95cf)\n* **Vulnerability Type:** CWE-191: Integer Underflow; CWE-125: Out-of-bounds Read\n* **Attack Type:** Remote, Unauthenticated\n* **Impact:** Denial of Service (DoS); Potential Code Execution\n\n## Description\nA memory corruption vulnerability exists in the handling of connected explicit messages in OpENer 2.3.0. A remotely crafted `SendUnitData` request may trigger an integer underflow during message length processing, causing invalid length handling and out-of-bounds memory access.\n\n## Affected Component\nThe vulnerability affects connected message parsing and EPATH decoding logic, including `source/src/enet_encap/cpf.c`, `source/src/cip/cipmessagerouter.c`, and `source/src/cip/cipcommon.c`, specifically the `NotifyConnectedCommonPacketFormat`, `CreateMessageRouterRequestStructure`, and `DecodePaddedEPath` functions.\n\n## Attack Vectors\nAn unauthenticated, remote attacker with network access to the target OpENer instance can exploit this vulnerability by connecting to the EtherNet/IP TCP port, typically TCP/44818, registering a session, and establishing a standard CIP connection.\n\nThe attacker can then send a crafted `SendUnitData` request containing malformed length and path fields. Due to insufficient validation of connected message length values, the crafted request may cause an integer underflow and allow invalid data to reach the EPATH decoding logic.\n\nSuccessful exploitation can crash the OpENer process, resulting in a Denial of Service condition. Depending on the runtime environment and memory layout, further impact may be possible.\n\n## References\n* Project: https://github.com/EIPStackGroup/OpENer\n* GitHub Issue: https://github.com/EIPStackGroup/OpENer/issues/568", "creation_timestamp": "2026-07-09T03:43:26.325062Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/66df8721-bae8-4af4-9187-ede53bf21d27/export</guid>
      <pubDate>Thu, 09 Jul 2026 03:43:26 +0000</pubDate>
    </item>
  </channel>
</rss>
