2 matches found
CVE-2022-24381
CVE-2022-24381 affects asneg/opcuastack. A DoS exists due to missing limit on the number of received chunks per session or across concurrent sessions. An attacker can flood with unlimited large chunks (e.g., 2GB) without a Final chunk, potentially impacting availability. CVSS v3.1 base score 7.5 ...
CVE-2022-24381
All versions of package asneg/opcuastack are vulnerable to Denial of Service DoS due to a missing limitation on the number of received chunks - per single session or in total for all concurrent sessions. An attacker can exploit this vulnerability by sending an unlimited number of huge chunks e.g...