CVE-2024-42512

CVSS 3.1 Score 8.6 of 10 (high)

Details

Published Feb 10, 2025

CWE ID 208

Summary

CVE-2024-42512 is a newly disclosed vulnerability affecting the OPC UA .NET Standard Stack prior to version 1.5.374.158. This issue allows unauthorized attackers to bypass application authentication when the outdated Basic128Rsa15 security policy is enabled. An attacker can exploit this vulnerability to gain unauthorized access to systems using this stack, potentially leading to data theft or system compromise. Organizations using this stack are strongly advised to update to a patched version to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/xcetOu
https://www.cve.org/CVERecord?id=CVE-2024-42512
https://nvd.nist.gov/vuln/detail/CVE-2024-42512

Back to Vulnerability Database

CVE-2024-42512

CVSS 3.1 Score 8.6 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations