Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Opc_ua_c\+\+_software_development_kit
(Softing)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 15 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2022-10-20 | CVE-2022-37453 | An issue was discovered in Softing OPC UA C++ SDK before 6.10. A buffer overflow or an excess allocation happens due to unchecked array and matrix bounds in structure data types. | Edgeaggregator, Edgeconnector, Opc, Opc_ua_c\+\+_software_development_kit, Secure_integration_server, Uagates | 7.5 | ||
| 2022-10-20 | CVE-2022-39823 | An issue was discovered in Softing OPC UA C++ SDK 5.66 through 6.x before 6.10. An OPC/UA browse request exceeding the server limit on continuation points may cause a use-after-free error | Opc, Opc_ua_c\+\+_software_development_kit | 7.5 | ||
| 2022-03-11 | CVE-2021-42262 | An issue was discovered in Softing OPC UA C++ SDK before 5.70. An invalid XML element in the type dictionary makes the OPC/UA client crash due to an out-of-memory condition. | Datafeed_opc_suite, Opc_ua_c\+\+_software_development_kit, Secure_integration_server | 6.5 | ||
| 2022-03-11 | CVE-2021-42577 | An issue was discovered in Softing OPC UA C++ SDK before 5.70. A malformed OPC/UA message abort packet makes the client crash with a NULL pointer dereference. | Datafeed_opc_suite, Opc_ua_c\+\+_software_development_kit, Secure_integration_server | 7.5 | ||
| 2022-04-04 | CVE-2021-32994 | Softing OPC UA C++ SDK (Software Development Kit) versions from 5.59 to 5.64 exported library functions don't properly validate received extension objects, which may allow an attacker to crash the software by sending a variety of specially crafted packets to access several unexpected memory locations. | Opc_ua_c\+\+_software_development_kit | 7.5 |