CRITICAL🇵🇱 Wersja polska

CVE-2020-14524

CVSS 9.8v3.1pub. 2020-08-25upd. 2024-11-21

Softing Industrial Automation all versions prior to the latest build of version 4.47.0, The affected product is vulnerable to a heap-based buffer overflow, which may allow an attacker to remotely execute arbitrary code.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Softing Opc

    APP
    Softing
    < 4.47.0
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
RCEMemory
CWE
References

Related vulnerabilities

CVE-2022-2336CRITICAL9.8ten sam produkt

Softing Secure Integration Server, edgeConnector, and edgeAggregator software ships with the default administr...

CVE-2023-41151HIGH7.5ten sam produkt

An uncaught exception issue discovered in Softing OPC UA C++ SDK before 6.30 for Windows operating system may ...

CVE-2023-37572HIGH7.5ten sam produkt

Softing OPC Suite version 5.25 and before has Incorrect Access Control, allows attackers to obtain sensitive i...

CVE-2022-37453HIGH7.5ten sam produkt

An issue was discovered in Softing OPC UA C++ SDK before 6.10. A buffer overflow or an excess allocation happe...

CVE-2022-39823HIGH7.5ten sam produkt

An issue was discovered in Softing OPC UA C++ SDK 5.66 through 6.x before 6.10. An OPC/UA browse request excee...