11 matches found
EUVD-2022-29273
Malicious code in bioql PyPI...
CVE-2022-25302
All versions of package asneg/opcuastack are vulnerable to Denial of Service DoS due to a missing handler for failed casting when unvalidated data is forwarded to boost::get function in OpcUaNodeIdBase.h. Exploiting this vulnerability is possible when sending a specifically crafted OPC UA message...
CVE-2022-25302
All versions of package asneg/opcuastack are vulnerable to Denial of Service DoS due to a missing handler for failed casting when unvalidated data is forwarded to boost::get function in OpcUaNodeIdBase.h. Exploiting this vulnerability is possible when sending a specifically crafted OPC UA message...
Design/Logic Flaw
All versions of package asneg/opcuastack are vulnerable to Denial of Service DoS due to a missing limitation on the number of received chunks - per single session or in total for all concurrent sessions. An attacker can exploit this vulnerability by sending an unlimited number of huge chunks e.g...
Design/Logic Flaw
All versions of package asneg/opcuastack are vulnerable to Denial of Service DoS due to a missing handler for failed casting when unvalidated data is forwarded to boost::get function in OpcUaNodeIdBase.h. Exploiting this vulnerability is possible when sending a specifically crafted OPC UA message...
CVE-2022-24381 Denial of Service (DoS)
All versions of package asneg/opcuastack are vulnerable to Denial of Service DoS due to a missing limitation on the number of received chunks - per single session or in total for all concurrent sessions. An attacker can exploit this vulnerability by sending an unlimited number of huge chunks e.g...
CVE-2022-24381
CVE-2022-24381 affects asneg/opcuastack. A DoS exists due to missing limit on the number of received chunks per session or across concurrent sessions. An attacker can flood with unlimited large chunks (e.g., 2GB) without a Final chunk, potentially impacting availability. CVSS v3.1 base score 7.5 ...
CVE-2022-24381
All versions of package asneg/opcuastack are vulnerable to Denial of Service DoS due to a missing limitation on the number of received chunks - per single session or in total for all concurrent sessions. An attacker can exploit this vulnerability by sending an unlimited number of huge chunks e.g...
CVE-2022-25302
All versions of package asneg/opcuastack are vulnerable to Denial of Service DoS due to a missing handler for failed casting when unvalidated data is forwarded to boost::get function in OpcUaNodeIdBase.h. Exploiting this vulnerability is possible when sending a specifically crafted OPC UA message...
PT-2022-17198 · Unknown · Asneg/Opcuastack
Name of the Vulnerable Software and Affected Versions: asneg/opcuastack versions affected versions not specified Description: The issue is related to a Denial of Service DoS condition due to a missing handler for failed casting when unvalidated data is forwarded to boost::get function in...
PT-2022-16658 · Asneg · Opcuastack
Name of the Vulnerable Software and Affected Versions: asneg/opcuastack versions affected versions not specified Description: The issue is related to a Denial of Service DoS due to a missing limitation on the number of received chunks per single session or in total for all concurrent sessions. An...