The OPC UA implementations (ANSI C and C++) in affected products contain an integer overflow vulnerability that could cause the application to run into an infinite loop during certificate validation. This could allow an unauthenticated remote attacker to create a denial of service condition by sending a specially crafted certificate.

The ANSI C OPC UA SDK contains an integer overflow vulnerability that could cause the application to run into an infinite loop during certificate validation. This could allow an unauthenticated remote attacker to create a denial of service condition by sending a specially crafted certificate.

Уязвимость реализации стандарта промышленной связи OPC UA на языке программирования ANSI C программного обеспечения продуктов Siemens, связанная с целочисленным переполнением, позволяющая нарушителю вызвать отказ в обслуживании