PT-2021-11379 · Unknown · Opc Ua Tunneller

Published

2021-01-26

Updated

2021-02-03

CVE-2020-27299

CVSS v3.1

9.1

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H

Name of the Vulnerable Software and Affected Versions: OPC UA Tunneller versions prior to 6.3.0.8233

Description: The affected product is vulnerable to an out-of-bounds read, which may allow an attacker to obtain and disclose sensitive data information or cause the device to crash.

Recommendations: For versions prior to 6.3.0.8233, update to version 6.3.0.8233 or later to resolve the issue. As a temporary workaround, consider restricting access to sensitive data and implementing additional security measures to minimize the risk of exploitation.

Fix

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-125

Related Identifiers

CVE-2020-27299

Affected Products

Opc Ua Tunneller

PT-2021-11379 · Unknown · Opc Ua Tunneller

CVE-2020-27299

Weakness Enumeration

Related Identifiers

Affected Products

References · 5