Vulnerabilities > Softing > OPC
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-08-17 | CVE-2022-2337 | Unspecified vulnerability in Softing products A crafted HTTP packet with a missing HTTP URI can create a denial-of-service condition in Softing Secure Integration Server V1.22. | 7.5 |
| 2022-08-17 | CVE-2022-2338 | Unspecified vulnerability in Softing products Softing Secure Integration Server V1.22 is vulnerable to authentication bypass via a machine-in-the-middle attack. high complexity softing | 5.3 |
| 2022-08-17 | CVE-2022-2547 | Unspecified vulnerability in Softing products A crafted HTTP packet without a content-type header can create a denial-of-service condition in Softing Secure Integration Server V1.22. | 7.5 |
| 2021-11-10 | CVE-2021-40871 | Type Confusion vulnerability in Softing products An issue was discovered in Softing Industrial Automation OPC UA C++ SDK before 5.66. | 7.5 |
| 2021-11-10 | CVE-2021-40873 | Double Free vulnerability in Softing products An issue was discovered in Softing Industrial Automation OPC UA C++ SDK before 5.66, and uaToolkit Embedded before 1.40. | 7.5 |
| 2020-08-25 | CVE-2020-14524 | Out-of-bounds Write vulnerability in Softing OPC Softing Industrial Automation all versions prior to the latest build of version 4.47.0, The affected product is vulnerable to a heap-based buffer overflow, which may allow an attacker to remotely execute arbitrary code. | 9.8 |
| 2020-08-25 | CVE-2020-14522 | Resource Exhaustion vulnerability in Softing OPC Softing Industrial Automation all versions prior to the latest build of version 4.47.0, The affected product is vulnerable to uncontrolled resource consumption, which may allow an attacker to cause a denial-of-service condition. | 7.5 |