Buffer-Management Vulnerability Could Lead to Denial of Service
CVE-2024-33862

7.5HIGH

Key Information:

Vendor: OPC Foundation
Status: OPCFoundation.NetStandard.Opc.Ua.Core
Vendor: CVE Published:; 5 July 2024

🔔 Create OPC Foundation Vulnerability Alert

What is CVE-2024-33862?

A vulnerability in the OPC Foundation's OPC UA .NET Standard Library allows remote attackers to exploit buffer-management flaws. By sending an excessive number of messages to the system, an attacker can exhaust memory resources, potentially leading to a denial of service (DoS) condition. This can disrupt the normal functioning of systems utilizing this product, highlighting the importance of timely updates and security measures for affected versions.

References

https://files.opcfoundation.org/SecurityBulletins/OPC%20F...

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 5, 2024

CVE-2024-33862 Data

JSON