CVE-2026-38719

Published: May 18, 2026

Modified: May 18, 2026

PUBLISHED

Description

OpENer v2.3-558-g1e99582 contains an out-of-bounds read vulnerability in the Common Packet Format (CPF) parser, specifically in CreateCommonPacketFormatStructure() in source/src/enet_encap/cpf.c. A crafted ENIP/CPF message can supply an attacker-controlled item_count value that is not consistently validated against the remaining data_length of the CPF slice

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://github.com/EIPStackGroup/OpENer

https://github.com/EIPStackGroup/OpENer/issues/558

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2026-38719

Description

Affected Products

References