Lucene search
Vera Mens, Uri Katz, Sharon Brizinov of Claroty ResearchZDI-22-854HistoryJun 16, 2022 - 12:00 a.m.
(Pwn2Own) OPC Foundation UA .NET Standard Resource Exhaustion Denial-of-Service Vulnerability
2022-06-1600:00:00
Vera Mens, Uri Katz, Sharon Brizinov of Claroty Research
www.zerodayinitiative.com
11
0.003 Low
EPSS
Percentile
68.2%
This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of OPC Foundation UA .NET Standard. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of message chunks. By sending a large number of requests, an attacker can cause the number of sessions to grow without limit. An attacker can leverage this vulnerability to create a denial-of-service condition on the system.
Related
nvd
nvd
CVE-2022-29864
2022-06-16 18:15:10
github
github
Uncontrolled Resource Consumption in OPCFoundation.NetStandard.Opc.Ua.Core
2022-06-17 21:44:58
prion
prion
Code injection
2022-06-16 18:15:00
cve
cve
CVE-2022-29864
2022-06-16 18:15:10
veracode
veracode
Denial Of Service (DoS)
2022-06-23 04:55:36
osv
osv
Uncontrolled Resource Consumption in OPCFoundation.NetStandard.Opc.Ua.Core
2022-06-17 21:44:58
CVE-2022-29864
2022-06-16 18:15:10
cvelist
cvelist
CVE-2022-29864
2022-06-16 17:05:56