Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
softing edgeconnector vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-27336
Softing edgeConnector Siemens OPC UA Server Null Pointer Dereference Denial-of-Service Vulnerability. This vulnerability allows remote malicious users to create a denial-of-service condition on affected installations of Softing edgeConnector Siemens. Authentication is not require...
NA
CVE-2023-27334
Softing edgeConnector Siemens ConditionRefresh Resource Exhaustion Denial-of-Service Vulnerability. This vulnerability allows remote malicious users to create a denial-of-service condition on affected installations of Softing edgeConnector Siemens. Authentication is not required ...
NA
CVE-2024-0860
The affected product is vulnerable to a cleartext transmission of sensitive information vulnerability, which may allow an malicious user to capture packets to craft their own requests.
NA
CVE-2023-38126
Softing edgeAggregator Restore Configuration Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote malicious users to execute arbitrary code on affected installations of Softing edgeAggregator. Authentication is required to exploit this vulnera...
Softing Edgeaggregator 3.4.0
NA
CVE-2022-37453
An issue exists in Softing OPC UA C++ SDK prior to 6.10. A buffer overflow or an excess allocation happens due to unchecked array and matrix bounds in structure data types.
Softing Secure Integration Server
Softing Opc Ua C\\+\\+ Software Development Kit
Softing Opc
Softing Edgeconnector
Softing Edgeaggregator
Softing Uagates
NA
CVE-2022-2335
A crafted HTTP packet with a -1 content-length header can create a denial-of-service condition in Softing Secure Integration Server V1.22.
Softing Edgeaggregator 3.1
Softing Secure Integration Server 1.22
Softing Edgeconnector 3.1
Softing Opc 5.2
Softing Opc Ua C\\+\\+ Software Development Kit 6
Softing Uagates 1.74
NA
CVE-2022-2338
Softing Secure Integration Server V1.22 is vulnerable to authentication bypass via a machine-in-the-middle attack. The default the administration interface is accessible via plaintext HTTP protocol, facilitating the attack. The HTTP request may contain the session cookie in the r...
Softing Edgeaggregator 3.1
Softing Secure Integration Server 1.22
Softing Edgeconnector 3.1
Softing Opc 5.2
Softing Opc Ua C\\+\\+ Software Development Kit 6
Softing Uagates 1.74
NA
CVE-2022-1373
The “restore configuration” feature of Softing Secure Integration Server V1.22 is vulnerable to a directory traversal vulnerability when processing zip files. An attacker can craft a zip file to load an arbitrary dll and execute code. Using the "restore configura...
Softing Edgeaggregator 3.1
Softing Secure Integration Server 1.22
Softing Edgeconnector 3.1
Softing Opc 5.2
Softing Opc Ua C\\+\\+ Software Development Kit 6
Softing Uagates 1.74
NA
CVE-2022-2547
A crafted HTTP packet without a content-type header can create a denial-of-service condition in Softing Secure Integration Server V1.22.
Softing Edgeaggregator 3.1
Softing Secure Integration Server 1.22
Softing Edgeconnector 3.1
Softing Opc 5.2
Softing Opc Ua C\\+\\+ Software Development Kit 6
Softing Uagates 1.74
NA
CVE-2022-2336
Softing Secure Integration Server, edgeConnector, and edgeAggregator software ships with the default administrator credentials as `admin` and password as `admin`. This allows Softing to log in to the server directly to perform administrative functions. Upon installation or upon f...
Softing Edgeaggregator 3.1
Softing Secure Integration Server 1.22
Softing Edgeconnector 3.1
Softing Opc 5.2
Softing Opc Ua C\\+\\+ Software Development Kit 6
Softing Uagates 1.74
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »