CVE-2023-41151

Published: Dec 14, 2023Modified: May 22, 2025

7.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

An uncaught exception issue discovered in Softing OPC UA C++ SDK before 6.30 for Windows operating system may cause the application to crash when the server wants to send an error packet, while socket is blocked on writing.

Affected (3)

Products: Softing: Opc, Opc Ua C++ Software Development Kit, Secure Integration Server

Softing

3 products

Opc

Opc Ua C++ Software Development Kit

Secure Integration Server

Configuration A

3 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Softing Opc	Up to 5.30
Softing Opc Ua C++ Software Development Kit	Up to 6.20.1
Softing Secure Integration Server	Up to 1.22

Running on/with	Platform Versions
Microsoft Windows	All versions

Related CWEs

CWE-400

Uncontrolled Resource Consumption

The product does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources.

CWE-755

Improper Handling of Exceptional Conditions

The product does not handle or incorrectly handles an exceptional condition.

References (2)

https://industrial.softing.com/fileadmin/psirt/downloads/2023/syt-2023-3.html

Source: cve@mitre.org

Vendor Advisory

https://industrial.softing.com/fileadmin/psirt/downloads/2023/syt-2023-3.html

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.