The OPC UA Legacy Java Stack before 6f176f2 enables an attacker to block OPC UA server applications via uncontrolled resource consumption so that they can no longer serve client applications.
References
Configurations
History
02 Apr 2024, 14:49
Type | Values Removed | Values Added |
---|---|---|
First Time |
Prosysopc ua Modbus Server
Prosysopc ua Simulation Server Prosysopc ua Historian Prosysopc |
|
CPE | cpe:2.3:a:prosysopc:ua_historian:*:*:*:*:*:*:*:* cpe:2.3:a:prosysopc:ua_simulation_server:*:*:*:*:*:*:*:* cpe:2.3:a:prosysopc:ua_modbus_server:*:*:*:*:*:*:*:* |
24 May 2023, 20:41
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-400 | |
CPE | cpe:2.3:a:opcfoundation:ua_java_legacy:*:*:*:*:*:*:*:* | |
First Time |
Opcfoundation ua Java Legacy
Opcfoundation |
|
References | (MISC) https://github.com/OPCFoundation/UA-Java-Legacy/commit/6f176f2b445a27c157f1a32f225accc9ce8873c0 - Patch | |
References | (MISC) https://github.com/OPCFoundation/UA-Java-Legacy - Product | |
References | (CONFIRM) https://files.opcfoundation.org/SecurityBulletins/OPC%20Foundation%20Security%20Bulletin%20CVE-2023-32787.pdf - Patch, Vendor Advisory | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.5 |
15 May 2023, 15:20
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-05-15 15:15
Updated : 2024-04-02 14:49
NVD link : CVE-2023-32787
Mitre link : CVE-2023-32787
CVE.ORG link : CVE-2023-32787
JSON object : View
Products Affected
prosysopc
- ua_simulation_server
- ua_modbus_server
- ua_historian
opcfoundation
- ua_java_legacy
CWE
CWE-400
Uncontrolled Resource Consumption