CVE-2023-28831
CVSS 3.1 Score 7.5 of 10 (high)
Details
Published Sep 12, 2023
Updated: Feb 13, 2024
CWE ID 190
Summary
CVE-2023-28831 refers to a vulnerability in certain OPC UA implementations, specifically those in the ANSI C and C++ versions. This issue involves an integer overflow during certificate validation, leading the application to enter an infinite loop. An unauthenticated remote attacker can exploit this flaw by sending a maliciously crafted certificate, ultimately resulting in a denial of service condition.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Vendors
- Siemens AG