First published: Thu May 20 2021(Updated: )
OPC Foundation UA .NET Standard versions prior to 1.4.365.48 and OPC UA .NET Legacy are vulnerable to an uncontrolled recursion, which may allow an attacker to trigger a stack overflow.
Credit: ics-cert@hq.dhs.gov
Affected Software | Affected Version | How to fix |
---|---|---|
Opcfoundation Ua-.net-legacy | ||
Opcfoundation Ua .net Standard Stack | <1.4.365.48 | |
OPC Foundation OPC UA .NET Standard: versions prior to 1.4.365.48 | ||
OPC Foundation OPC UA .NET Legacy |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2021-27432 is a vulnerability in OPC Foundation UA .NET Standard versions prior to 1.4.365.48 and OPC UA .NET Legacy that allows an attacker to trigger a stack overflow through uncontrolled recursion.
CVE-2021-27432 has a severity rating of 7.5 (high).
The affected software includes OPC Foundation UA .NET Standard versions prior to 1.4.365.48 and OPC UA .NET Legacy.
The CWE ID for CVE-2021-27432 is 674.
More information about CVE-2021-27432 can be found at this reference: https://us-cert.cisa.gov/ics/advisories/icsa-21-133-03