CVE-2022-25903
- EPSS 0.58%
- Veröffentlicht 24.08.2022 05:15:07
- Zuletzt bearbeitet 21.11.2024 06:53:11
The package opcua from 0.0.0 are vulnerable to Denial of Service (DoS) via the ExtensionObjects and Variants objects, when it allows unlimited nesting levels, which could result in a stack overflow even if the message size is less than the maximum al...
CVE-2022-25888
- EPSS 0.5%
- Veröffentlicht 23.08.2022 05:15:08
- Zuletzt bearbeitet 21.11.2024 06:53:10
The package opcua from 0.0.0 are vulnerable to Denial of Service (DoS) due to a missing limitation on the number of received chunks - per single session or in total for all concurrent sessions. An attacker can exploit this vulnerability by sending an...
CVE-2022-25304
- EPSS 0.5%
- Veröffentlicht 23.08.2022 05:15:07
- Zuletzt bearbeitet 21.11.2024 06:51:57
All versions of package opcua; all versions of package asyncua are vulnerable to Denial of Service (DoS) due to a missing limitation on the number of received chunks - per single session or in total for all concurrent sessions. An attacker can exploi...