An issue was discovered in Softing OPC UA C++ SDK before 5.70. A malformed OPC/UA message abort packet makes the client crash with a NULL pointer dereference.
References
Link | Resource |
---|---|
https://industrial.softing.com/fileadmin/sof-files/pdf/ia/support/Security_Bulletin_CVE-2021-42577.pdf | Vendor Advisory |
https://softing.com | Vendor Advisory |
https://industrial.softing.com/fileadmin/sof-files/pdf/ia/support/Security_Bulletin_CVE-2021-42577.pdf | Vendor Advisory |
https://softing.com | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 06:27
Type | Values Removed | Values Added |
---|---|---|
References | () https://industrial.softing.com/fileadmin/sof-files/pdf/ia/support/Security_Bulletin_CVE-2021-42577.pdf - Vendor Advisory | |
References | () https://softing.com - Vendor Advisory |
18 Mar 2022, 20:41
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : 5.0
v3 : 7.5 |
CPE | cpe:2.3:a:softing:opc_ua_c\+\+_software_development_kit:*:*:*:*:*:*:*:* cpe:2.3:a:softing:secure_integration_server:*:*:*:*:*:*:*:* cpe:2.3:a:softing:datafeed_opc_suite:*:*:*:*:*:*:*:* |
|
References | (MISC) https://softing.com - Vendor Advisory | |
References | (MISC) https://industrial.softing.com/fileadmin/sof-files/pdf/ia/support/Security_Bulletin_CVE-2021-42577.pdf - Vendor Advisory | |
CWE | CWE-476 |
11 Mar 2022, 23:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-03-11 23:15
Updated : 2024-11-21 06:27
NVD link : CVE-2021-42577
Mitre link : CVE-2021-42577
CVE.ORG link : CVE-2021-42577
JSON object : View
Products Affected
softing
- datafeed_opc_suite
- secure_integration_server
- opc_ua_c\+\+_software_development_kit
CWE
CWE-476
NULL Pointer Dereference