Security Advisory

CVE-2022-25903

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-08-24 05:00:19

Last updated 2024-09-17 01:45:33

Assigner snyk

State PUBLISHED

Description

The package opcua from 0.0.0 are vulnerable to Denial of Service (DoS) via the ExtensionObjects and Variants objects, when it allows unlimited nesting levels, which could result in a stack overflow even if the message size is less than the maximum allowed.

← Browse all CVEs View on cve.org ↗