First published: Thu Jun 16 2022(Updated: )
OPC UA .NET Standard Stack 1.04.368 allows a remote attacker to exhaust the memory resources of a server via a crafted request that triggers Uncontrolled Resource Consumption.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Opcfoundation Ua .net Standard Stack | <1.4.368.58 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of CVE-2022-29866 is high with a CVSS score of 7.5.
CVE-2022-29866 affects OPC UA .NET Standard Stack 1.04.368.
A remote attacker can exploit CVE-2022-29866 by sending a crafted request that triggers Uncontrolled Resource Consumption, causing the server to exhaust its memory resources.
OPC UA .NET Standard Stack versions up to and exclusive of 1.04.368.58 are affected by CVE-2022-29866.
Yes, an update to version 1.04.368.58 or later of OPC UA .NET Standard Stack fixes CVE-2022-29866.