Vulnerabilities > Softing > Secure Integration Server > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-12-14 | CVE-2023-41151 | Improper Handling of Exceptional Conditions vulnerability in Softing OPC and OPC UA C++ Software Development KIT An uncaught exception issue discovered in Softing OPC UA C++ SDK before 6.30 for Windows operating system may cause the application to crash when the server wants to send an error packet, while socket is blocked on writing. | 7.5 |
| 2022-10-20 | CVE-2022-37453 | Out-of-bounds Write vulnerability in Softing products An issue was discovered in Softing OPC UA C++ SDK before 6.10. | 7.5 |
| 2022-08-17 | CVE-2022-1069 | Unspecified vulnerability in Softing products A crafted HTTP packet with a large content-length header can create a denial-of-service condition in Softing Secure Integration Server V1.22. | 7.5 |
| 2022-08-17 | CVE-2022-1373 | Path Traversal vulnerability in Softing products The “restore configuration” feature of Softing Secure Integration Server V1.22 is vulnerable to a directory traversal vulnerability when processing zip files. | 7.2 |
| 2022-08-17 | CVE-2022-1748 | NULL Pointer Dereference vulnerability in Softing products Softing OPC UA C++ Server SDK, Secure Integration Server, edgeConnector, edgeAggregator, OPC Suite, and uaGate are affected by a NULL pointer dereference vulnerability. | 7.5 |
| 2022-08-17 | CVE-2022-2334 | Unspecified vulnerability in Softing products The application searches for a library dll that is not found. | 7.2 |
| 2022-08-17 | CVE-2022-2335 | Unspecified vulnerability in Softing products A crafted HTTP packet with a -1 content-length header can create a denial-of-service condition in Softing Secure Integration Server V1.22. | 7.5 |
| 2022-08-17 | CVE-2022-2337 | Unspecified vulnerability in Softing products A crafted HTTP packet with a missing HTTP URI can create a denial-of-service condition in Softing Secure Integration Server V1.22. | 7.5 |
| 2022-08-17 | CVE-2022-2547 | Unspecified vulnerability in Softing products A crafted HTTP packet without a content-type header can create a denial-of-service condition in Softing Secure Integration Server V1.22. | 7.5 |
| 2022-03-11 | CVE-2021-42577 | NULL Pointer Dereference vulnerability in Softing products An issue was discovered in Softing OPC UA C++ SDK before 5.70. | 7.5 |