Asneg/Opcuastack
Approved changes feed: RSS · Atom
cpe:2.3:a:n/a:asneg/opcuastack:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | N/A (22f567d3-1203-528c-8f0e-3eb9c2f6ca78) |
|---|---|
| Product | Asneg/Opcuastack (4b315ccb-248e-5b6a-a2b0-5b64337b2292) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2022-25302 |
vulnerable | 2026-06-08 05:41:45.686390 |
Denial of Service (DoS)
HIGH (7.5)
All versions of package asneg/opcuastack are vulnerable to Denial of Service (DoS) due to a missing handler for failed casting when unvalidated data is forwarded to boost::get function in OpcUaNodeIdBase.h. Exploiting this vulnerability is possible when sending a specifically crafted OPC UA message with a special encoded NodeId.
Published: 2022-08-23T05:00:17.555Z
Updated: 2024-09-17T03:53:54.184Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-24381 |
vulnerable | 2026-06-08 05:41:00.214180 |
Denial of Service (DoS)
HIGH (7.5)
All versions of package asneg/opcuastack are vulnerable to Denial of Service (DoS) due to a missing limitation on the number of received chunks - per single session or in total for all concurrent sessions. An attacker can exploit this vulnerability by sending an unlimited number of huge chunks (e.g. 2GB each) without sending the Final closing chunk.
Published: 2022-08-23T05:08:09.708Z
Updated: 2024-09-16T17:18:30.181Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.