HIGH🇵🇱 Wersja polska

CVE-2024-42512

CVSS 8.6v3.1pub. 2025-02-10upd. 2025-09-29

Vulnerability in the OPC UA .NET Standard Stack before 1.5.374.158 allows an unauthorized attacker to bypass application authentication when the deprecated Basic128Rsa15 security policy is enabled.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L
  • Opcfoundation Ua .net Standard Stack

    APP
    Opcfoundation
    < 1.5.374.158
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2022-33916HIGH7.5ten sam produkt

OPC UA .NET Standard Reference Server 1.04.368 allows a remote attacker to cause the application to access sen...

CVE-2022-29862HIGH7.5ten sam produkt

An infinite loop in OPC UA .NET Standard Stack 1.04.368 allows a remote attackers to cause the application to ...

CVE-2022-29863HIGH7.5ten sam produkt

OPC UA .NET Standard Stack 1.04.368 allows remote attacker to cause a crash via a crafted message that trigger...

CVE-2022-29864HIGH7.5ten sam produkt

OPC UA .NET Standard Stack 1.04.368 allows a remote attacker to cause a server to crash via a large number of ...

CVE-2022-29865HIGH7.5ten sam produkt

OPC UA .NET Standard Stack allows a remote attacker to bypass the application authentication check via crafted...