HIGH🇬🇧 English

CVE-2024-42512

CVSS 8.6v3.1pub. 2025-02-10upd. 2025-09-29

Vulnerability in the OPC UA .NET Standard Stack before 1.5.374.158 allows an unauthorized attacker to bypass application authentication when the deprecated Basic128Rsa15 security policy is enabled.

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L
  • Opcfoundation Ua .net Standard Stack

    APP
    Opcfoundation
    < 1.5.374.158
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Referencje

Powiązane podatności

CVE-2022-33916HIGH7.5ten sam produkt

OPC UA .NET Standard Reference Server 1.04.368 allows a remote attacker to cause the application to access sen...

CVE-2022-29862HIGH7.5ten sam produkt

An infinite loop in OPC UA .NET Standard Stack 1.04.368 allows a remote attackers to cause the application to ...

CVE-2022-29863HIGH7.5ten sam produkt

OPC UA .NET Standard Stack 1.04.368 allows remote attacker to cause a crash via a crafted message that trigger...

CVE-2022-29864HIGH7.5ten sam produkt

OPC UA .NET Standard Stack 1.04.368 allows a remote attacker to cause a server to crash via a large number of ...

CVE-2022-29865HIGH7.5ten sam produkt

OPC UA .NET Standard Stack allows a remote attacker to bypass the application authentication check via crafted...