Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of OPC Foundation UA .NET Standard 1.04.358.30. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of sessions. The issue results from the lack of proper locking when performing operations on an object. An attacker can leverage this vulnerability to create a denial-of-service condition against the application. Was ZDI-CAN-10295.
CVSS Information
N/A
Vulnerability Type
检查时间与使用时间(TOCTOU)的竞争条件
Vulnerability Title
OPC Foundation UA .NET Standard 代码问题漏洞
Vulnerability Description
OPC Foundation UA.NET Standard是OPC基金会(OPC Foundation)的一套用于开发OPC UA应用程序的统一架构标准。 OPC Foundation UA.NET Standard中会话的处理过程存在安全漏洞,该漏洞源于在对对象执行操作时缺少适当的锁定操作。攻击者可利用该漏洞导致拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A