CVEs-PoC/2022/CVE-2022-24298.md at ae7c8ffaeab2dbdfe8daabfe5c8c852b33cc867f

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-06-01 11:01:35 +02:00

Files

T

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

Description

All versions of package freeopcua/freeopcua are vulnerable to Denial of Service (DoS) when bypassing the limitations for excessive memory consumption by sending multiple CloseSession requests with the deleteSubscription parameter equal to False.

POC

Reference

https://security.snyk.io/vuln/SNYK-UNMANAGED-FREEOPCUAFREEOPCUA-2988720

Github

https://github.com/claroty/opcua-exploit-framework

811 B Raw Blame History

CVE-2022-24298

Description

POC

Reference

Github

811 B

Raw Blame History