CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Unified Automation UaGateway Certificate Parsing Integer Overflow Denial-of-Service Vulnerability. This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Unified Automation UaGateway. Authentication is not required to exploit this...

7.5CVSS5.9AI score0.00754EPSS

Exploits0References1

NVD•added 2024/05/03 3:15 a.m.•16 views

CVE-2023-41185

8.6CVSS8.5AI score0.00754EPSS

Exploits0References1

NVD•added 2024/05/03 2:15 a.m.•19 views

CVE-2023-32174

Unified Automation UaGateway NodeManagerOpcUa Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Unified Automation UaGateway. Authentication is required to exploit this vulnerability when the produ...

9.1CVSS9.7AI score0.01853EPSS

Exploits0References2

NVD•added 2024/05/03 2:15 a.m.•8 views

CVE-2023-32173

Unified Automation UaGateway AddServer XML Injection Denial-of-Service Vulnerability. This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Unified Automation UaGateway. Authentication is required to exploit this vulnerability when the...

5.8CVSS5.7AI score0.01171EPSS

Exploits0References2

ATTACKERKB•added 2024/05/03 2:15 a.m.•2 views

CVE-2023-32171

Unified Automation UaGateway OPC UA Server Null Pointer Dereference Denial-of-Service Vulnerability. This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Unified Automation UaGateway. Authentication is required to exploit this...

6.5CVSS5.8AI score0.01356EPSS

Exploits0References3Affected Software1

ATTACKERKB•added 2024/05/03 2:15 a.m.•3 views

CVE-2023-32170

Unified Automation UaGateway OPC UA Server Improper Input Validation Denial-of-Service Vulnerability. This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Unified Automation UaGateway. User interaction is required to exploit this...

6.5CVSS5.8AI score0.00588EPSS

Exploits0References3Affected Software1

OSV•added 2024/05/03 2:15 a.m.•4 views

CVE-2023-32170

6.5CVSS5.8AI score0.00588EPSS

Exploits0References2

OSV•added 2024/05/03 2:15 a.m.•1 views

CVE-2023-32171

6.5CVSS5.9AI score0.01356EPSS

Exploits0References2

ATTACKERKB•added 2024/05/03 2:15 a.m.•4 views

CVE-2023-32173

5.8CVSS5.8AI score0.01171EPSS

Exploits0References3Affected Software1

OSV•added 2024/05/03 2:15 a.m.•5 views

CVE-2023-32173

5.8CVSS5.8AI score

Exploits0References2

NVD•added 2024/05/03 2:15 a.m.•12 views

CVE-2023-32170

6.5CVSS6.3AI score0.00588EPSS

Exploits0References2

OSV•added 2024/05/03 2:15 a.m.•4 views

CVE-2023-32172

Unified Automation UaGateway OPC UA Server Use-After-Free Denial-of-Service Vulnerability. This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Unified Automation UaGateway. Authentication is required to exploit this vulnerability. The...

6.5CVSS5.8AI score0.01374EPSS

Exploits0References2

Cvelist•added 2024/05/03 2:11 a.m.•19 views

CVE-2023-41185 Unified Automation UaGateway Certificate Parsing Integer Overflow Denial-of-Service Vulnerability

8.6CVSS8.7AI score0.00754EPSS

Exploits0References1

CVE•added 2024/05/03 2:11 a.m.•59 views

CVE-2023-41185

The CVE-2023-41185 issue affects Unified Automation UaGateway. The vulnerability is in the processing of client certificates where the certificate length field is not properly validated, allowing an integer overflow that can cause a denial-of-service. Authentication is not required. Exploitation ...

8.6CVSS8.4AI score0.00754EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by