Vulnerabilities > CVE-2021-42577 - NULL Pointer Dereference vulnerability in Softing products

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
PARTIAL
network
low complexity
softing
CWE-476

Summary

An issue was discovered in Softing OPC UA C++ SDK before 5.70. A malformed OPC/UA message abort packet makes the client crash with a NULL pointer dereference.

Vulnerable Configurations

Part Description Count
Application
Softing
44

Common Weakness Enumeration (CWE)