VYPR
Unrated severityNVD Advisory· Published Apr 4, 2022· Updated Apr 16, 2025

Softing OPC-UA C++ SDK Improper Restriction of Operations within the Bounds of a Memory Buffer

CVE-2021-32994

Description

Softing OPC UA C++ SDK (Software Development Kit) versions from 5.59 to 5.64 exported library functions don't properly validate received extension objects, which may allow an attacker to crash the software by sending a variety of specially crafted packets to access several unexpected memory locations.

Affected products

2
  • Range: >=5.59 <=5.64
  • Softing/OPC UA C++ SDK (Software Development Kit)v5
    Range: 5.59

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.