Unrated severityNVD Advisory· Published Apr 4, 2022· Updated Apr 16, 2025
Softing OPC-UA C++ SDK Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2021-32994
Description
Softing OPC UA C++ SDK (Software Development Kit) versions from 5.59 to 5.64 exported library functions don't properly validate received extension objects, which may allow an attacker to crash the software by sending a variety of specially crafted packets to access several unexpected memory locations.
Affected products
2- Range: >=5.59 <=5.64
- Softing/OPC UA C++ SDK (Software Development Kit)v5Range: 5.59
Patches
Vulnerability mechanics
References
1- www.cisa.gov/uscert/ics/advisories/icsa-21-168-02mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.