PT-2022-11623 · Softing · Softing Opc Ua C++ Sdk

Published

2022-03-11

·

Updated

2022-03-18

·

CVE-2021-42577

CVSS v3.1

7.5

High

VectorAV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Softing OPC UA C++ SDK versions prior to 5.70
Description The issue arises from a malformed OPC/UA message abort packet, which causes the client to crash due to a NULL pointer dereference.
Recommendations For versions prior to 5.70, update to version 5.70 or later to resolve the issue.

Fix

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-476

Related Identifiers

CVE-2021-42577

Affected Products

Softing Opc Ua C++ Sdk