CVE-2021-22824

Name of the Vulnerable Software and Affected Versions Interactive Graphical SCADA System Data Collector (dc.exe) version 15.0.0.21320 and prior

Description A buffer copy without checking the size of input issue exists, which could result in denial of service. This is due to a missing length check on user-supplied data from a constructed message received on the network.

Recommendations For versions 15.0.0.21320 and prior, consider implementing a length check on user-supplied data to prevent potential denial of service attacks. As a temporary workaround, restrict access to the network to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.