Description
A denial of service vulnerability exists in the ModbusTCP server functionality of OpenPLC _v3 a931181e8b81e36fadf7b74d5cba99b73c3f6d58. A specially crafted series of network connections can lead to the server not processing subsequent Modbus requests. An attacker can open a series of TCP connections to trigger this vulnerability.
Problem types
CWE-775: Missing Release of File Descriptor or Handle after Effective Lifetime
Product status
Credits
Discovered by a member of Cisco Talos.
References
talosintelligence.com/vulnerability_reports/TALOS-2025-2223
