The U.S. Cybersecurity and Infrastructure Security Agency issues advisory warning of multiple vulnerabilities in the OpENer EtherNet/IP stack. The vulnerabilities could expose industrial systems to denial-of-service attacks, data leaks, and remote code execution. The advisory was issued Thursday by the Cybersecurity Security Agency (CISA) The four security flaws were discovered and reported to CISA by researchers Tal Keren and Sharon Brizinov from operational technology security company Claroty. All versions prior to February 10, 2021, are affected, although there are no known public exploits that specifically target these vulnerabilities.
Source: https://thehackernews.com/2021/04/severe-bugs-reported-in-ethernetip.html