A crafted HTTP packet with a -1 content-length header can create a denial-of-service condition in Softing Secure Integration Server V1.22.
References
Link | Resource |
---|---|
https://industrial.softing.com/fileadmin/psirt/downloads/syt-2022-4.html | Mitigation Vendor Advisory |
https://www.cisa.gov/uscert/ics/advisories/icsa-22-228-04 | Mitigation Third Party Advisory US Government Resource |
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2022-08-17 21:15
Updated : 2024-02-28 19:29
NVD link : CVE-2022-2335
Mitre link : CVE-2022-2335
CVE.ORG link : CVE-2022-2335
JSON object : View
Products Affected
softing
- uagates
- edgeaggregator
- opc
- edgeconnector
- opc_ua_c\+\+_software_development_kit
- secure_integration_server
CWE
CWE-191
Integer Underflow (Wrap or Wraparound)