Uncontrolled Resource Consumption in OPCFoundation.NetStandard.Opc.Ua.Core

説明

A vulnerability was discovered in the OPC UA .NET Standard Stack that allows a malicious client to trigger a stack overflow exception in a server that exposes an HTTPS endpoint.

基本情報

タイプ
reviewed
深刻度
high
GitHub 上のアドバイザリ
アドバイザリを開く ↗
リポジトリのアドバイザリ
リポジトリのアドバイザリを開く ↗
ソースコード
ソースを見る ↗
公開(アドバイザリ)
2022-06-17 21:44:23 UTC
更新
2023-01-30 05:01:39 UTC
GitHub レビュー済み
2022-06-17 21:44:23 UTC
NVD で公開
2022-06-16

EPSS Score

Score Percentile
0.80% 73.52%

CVSS Scores

No CVSS scores in this advisory.

Identifiers

CWEs

CWE id Name
CWE-400 Uncontrolled Resource Consumption

Credits

  • mregen (analyst)

Affected packages (1)

Vulnerable version ranges and first patched releases as published by GitHub.

Ecosystem Package Vulnerable range First patched Vulnerable functions
nuget OPCFoundation.NetStandard.Opc.Ua.Core <= 1.4.368.53 1.4.368.58

References

cvelogic Threat Intelligence