Vulnerabilities > Softing > OPC UA C Software Development KIT
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-08-17 | CVE-2022-2338 | Unspecified vulnerability in Softing products Softing Secure Integration Server V1.22 is vulnerable to authentication bypass via a machine-in-the-middle attack. high complexity softing | 5.3 |
| 2022-08-17 | CVE-2022-2547 | Unspecified vulnerability in Softing products A crafted HTTP packet without a content-type header can create a denial-of-service condition in Softing Secure Integration Server V1.22. | 7.5 |
| 2022-04-04 | CVE-2021-32994 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Softing OPC UA C++ Software Development KIT Softing OPC UA C++ SDK (Software Development Kit) versions from 5.59 to 5.64 exported library functions don't properly validate received extension objects, which may allow an attacker to crash the software by sending a variety of specially crafted packets to access several unexpected memory locations. | 7.5 |
| 2022-03-11 | CVE-2021-42262 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Softing products An issue was discovered in Softing OPC UA C++ SDK before 5.70. | 6.5 |
| 2022-03-11 | CVE-2021-42577 | NULL Pointer Dereference vulnerability in Softing products An issue was discovered in Softing OPC UA C++ SDK before 5.70. | 7.5 |