Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
softing opc vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2021-42577
An issue exists in Softing OPC UA C++ SDK prior to 5.70. A malformed OPC/UA message abort packet makes the client crash with a NULL pointer dereference.
Softing Datafeed Opc Suite
Softing Opc Ua C\\+\\+ Software Development Kit
Softing Secure Integration Server
6.5
CVSSv3
CVE-2021-42262
An issue exists in Softing OPC UA C++ SDK prior to 5.70. An invalid XML element in the type dictionary makes the OPC/UA client crash due to an out-of-memory condition.
Softing Datafeed Opc Suite
Softing Opc Ua C\\+\\+ Software Development Kit
Softing Secure Integration Server
7.5
CVSSv3
CVE-2021-40872
An issue exists in Softing Industrial Automation uaToolkit Embedded prior to 1.40. Remote malicious users to cause a denial of service (DoS) or login as an anonymous user (bypassing security checks) by sending crafted messages to a OPC/UA server. The server process may crash unex...
Softing Smartlink Hw-dp
Softing Uatoolkit Embedded
7.5
CVSSv3
CVE-2021-40873
An issue exists in Softing Industrial Automation OPC UA C++ SDK prior to 5.66, and uaToolkit Embedded prior to 1.40. Remote malicious users to cause a denial of service (DoS) by sending crafted messages to a client or server. The server process may crash unexpectedly because of a...
Softing Datafeed Opc Suite
Softing Edgeconnector
Softing Opc
Softing Secure Integration Server
Softing Th Scope
Softing Uagates
Softing Uatoolkit Embedded
7.5
CVSSv3
CVE-2021-40871
An issue exists in Softing Industrial Automation OPC UA C++ SDK prior to 5.66. Remote malicious users to cause a denial of service (DoS) by sending crafted messages to a OPC/UA client. The client process may crash unexpectedly because of a wrong type cast, and must be restarted.
Softing Datafeed Opc Suite
Softing Opc
Softing Secure Integration Server
Softing Th Scope
8.8
CVSSv3
CVE-2021-29660
A Cross-Site Request Forgery (CSRF) vulnerability in en/cfg_setpwd.html in Softing AG OPC Toolbox up to and including 4.10.1.13035 allows malicious users to reset the administrative password by inducing the Administrator user to browse a URL controlled by an attacker.
Softing Opc Toolbox
5.4
CVSSv3
CVE-2021-29661
Softing AG OPC Toolbox up to and including 4.10.1.13035 allows /en/diag_values.html Stored XSS via the ITEMLISTVALUES##ITEMID parameter, resulting in JavaScript payload injection into the trace file. This payload will then be triggered every time an authenticated user browses the...
Softing Opc Toolbox
7.5
CVSSv3
CVE-2020-14522
Softing Industrial Automation all versions prior to the latest build of version 4.47.0, The affected product is vulnerable to uncontrolled resource consumption, which may allow an malicious user to cause a denial-of-service condition.
Softing Opc
9.8
CVSSv3
CVE-2020-14524
Softing Industrial Automation all versions prior to the latest build of version 4.47.0, The affected product is vulnerable to a heap-based buffer overflow, which may allow an malicious user to remotely execute arbitrary code.
Softing Opc
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3