asyncua Improper Authentication vulnerability

Versions of the package asyncua before 0.9.96 are vulnerable to Improper Authentication such that it is possible to access Address Space without encryption and authentication. Note: This issue is a result of missing checks for services that require an active session...

CVE-2023-26151

Versions of the package asyncua before 0.9.96 are vulnerable to Denial of Service DoS such that an attacker can send a malformed packet and as a result, the server will enter into an infinite loop and consume excessive memory...

PYSEC-2023-190

Versions of the package asyncua before 0.9.96 are vulnerable to Denial of Service DoS such that an attacker can send a malformed packet and as a result, the server will enter into an infinite loop and consume excessive memory...

asyncua Security Vulnerabilities

asyncua is a library in the Free OPC-UA Library open source. A security vulnerability exists in asyncua versions prior to 0.9.96 that stems from susceptibility to denial-of-service DoS attacks, where an attacker can send packets in the wrong format, causing the server to enter an infinite loop an...

Improper Authentication

Overview Affected versions of this package are vulnerable to Improper Authentication such that it is possible to access Address Space without encryption and authentication. Note: This issue is a result of missing checks for services that require an active session. Remediation Upgrade asyncua to...

[SA19018] Issue Dealer Unpublished Content Disclosure Weakness

TITLE: Issue Dealer Unpublished Content Disclosure Weakness SECUNIA ADVISORY ID: SA19018 VERIFY ADVISORY: http://secunia.com/advisories/19018/ CRITICAL: Not critical IMPACT: Security Bypass WHERE: From remote SOFTWARE: Issue Dealer 0.x http://secunia.com/product/8384/ DESCRIPTION: A weakness has...