Description
The OPC UA implementations (ANSI C and C++) in affected products contain an integer overflow vulnerability that could cause the application to run into an infinite loop during certificate validation.
This could allow an unauthenticated remote attacker to create a denial of service condition by sending a specially crafted certificate.
Reserved 2023-03-24 | Published 2023-09-12 | Updated 2025-01-14 | Assigner
siemensHIGH: 7.5CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C
Problem types
CWE-190: Integer Overflow or Wraparound
Product status
Default status
unknown
Any version before V8.1 SP1
affected
Default status
unknown
Any version before V2.2
affected
Default status
unknown
Any version before V2.2
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
V3.0.1 before V3.0.3
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
V3.0.1 before V3.0.3
affected
Default status
unknown
Any version before V21.9.7
affected
Default status
unknown
V30.0.0 before V30.1.0
affected
Default status
unknown
All versions
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before V16 Update 8
affected
Default status
unknown
Any version before V17 SP1 Update 1
affected
Default status
unknown
Any version before V18 Update 1
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V3.0.3
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V3.0.3
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V3.0.3
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V3.0.3
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V3.0.3
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V3.0.3
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V3.0.3
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V3.0.3
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V3.0.3
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V3.0.3
affected
Default status
unknown
Any version before V3.0.3
affected
Default status
unknown
Any version before V3.0.3
affected
Default status
unknown
Any version before V3.0.3
affected
Default status
unknown
Any version before V3.0.3
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V3.0.3
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V3.0.3
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V3.0.3
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V3.0.3
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V3.0.3
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V3.0.3
affected
Default status
unknown
Any version before V3.0.3
affected
Default status
unknown
Any version before V3.0.3
affected
Default status
unknown
Any version before V3.0.3
affected
Default status
unknown
Any version before V3.0.3
affected
Default status
unknown
Any version before V3.0.3
affected
Default status
unknown
Any version before V3.0.3
affected
Default status
unknown
Any version before V3.0.3
affected
Default status
unknown
Any version before V3.0.3
affected
Default status
unknown
Any version before V3.0.3
affected
Default status
unknown
Any version before V3.0.3
affected
Default status
unknown
Any version before V3.0.3
affected
Default status
unknown
Any version before V3.0.3
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V21.9.7
affected
Default status
unknown
Any version before V30.1.0
affected
Default status
unknown
Any version before V5.0 Update 2
affected
Default status
unknown
Any version before V8.1 SP1
affected
Default status
unknown
Any version before V3.17 P029
affected
Default status
unknown
Any version before V3.18 P019
affected
Default status
unknown
Any version before V3.19 P005
affected
Default status
unknown
Any version before V2.0.0.1
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before V19 Update 2
affected
Default status
unknown
Any version before V5.0.0.0
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before V8.0 Update 5
affected
Default status
unknown
Any version before V1.22
affected
Default status
unknown
Any version before V6.22
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V2.9.7
affected
Default status
unknown
Any version before V3.0.3
affected
Default status
unknown
Any version before V3.0.3
affected
Default status
unknown
Any version before V3.0.3
affected
References
cert-portal.siemens.com/productcert/pdf/ssa-711309.pdf
cert-portal.siemens.com/productcert/pdf/ssa-118850.pdf
cert-portal.siemens.com/productcert/html/ssa-711309.html
cert-portal.siemens.com/productcert/html/ssa-118850.html
cve.org (CVE-2023-28831)
nvd.nist.gov (CVE-2023-28831)
Download JSON
Subscribe to our newsletter to learn more about our work.