CVE-2020-27274

February 3, 2021

Some parsing functions in the affected product do not check the return value of malloc and the thread handling the message is forced to close, which may lead to a denial-of-service condition on the OPC UA Tunneller (versions prior to 6.3.0.8233).

Summary:

Some parsing functions in the affected product do not check the return value of malloc and the thread handling the message is forced to close, which may lead to a denial-of-service condition on the OPC UA Tunneller (versions prior to 6.3.0.8233).

Reference Links(if available):

  • https://us-cert.cisa.gov/ics/advisories/icsa-21-021-03

  • CVSS Score (if available)

    v2: / MEDIUM

    v3: /

    Links to Exploits(if available)

  • You may have missed

    news

    Ransomware Groups Exploit Cloud Services for Data Exfiltration and Attacks

    November 17, 2024
    news

    Zero-Day Vulnerability Discovered by watchTowr in Fortinet Products

    November 17, 2024
    news

    O2’s Innovative AI Granny Tackles Scam Callers with Engaging Tales

    November 17, 2024
    news

    Palo Alto Networks Zero-Day Vulnerability Actively Exploited: A Critical Security Advisory

    November 17, 2024
    news

    Bitfinex Hacker Ilya Lichtenstein Sentenced to Five Years for $4.5 Billion Crypto Heist

    November 17, 2024