An uncaught exception issue discovered in Softing OPC UA C++ SDK before 6.30 for Windows operating system may cause the application to crash when the server wants to send an error packet, while socket is blocked on writing.
Threat-Mapped Scoring
Score: 0.0
Priority: Unclassified
EPSS
Score: 0.00342Percentile:
0.56159
CVSS Scoring
CVSS v3.1 Score: 7.5
Severity: HIGH
Mapped CWE(s)
CWE-400
: Uncontrolled Resource Consumption
CWE-755
: Improper Handling of Exceptional Conditions
All CAPEC(s)
CAPEC-147 : XML Ping of the Death
CAPEC-227 : Sustained Client Engagement
CAPEC-492 : Regular Expression Exponential Blowup
CAPEC(s) with Mapped TTPs
CAPEC-227 : Sustained Client Engagement
Mapped TTPs:
T1499
: Endpoint Denial of Service
Mapped ATT&CK TTPs
T1499
: Endpoint Denial of Service
Kill Chain: impact
Malware
APTs Threat Group Associations
Campaigns
Affected Products
cpe:2.3:a:softing:opc:*:*:*:*:*:*:*:*
cpe:2.3:a:softing:opc_ua_c\+\+_software_development_kit:*:*:*:*:*:*:*:*
cpe:2.3:a:softing:secure_integration_server:*:*:*:*:*:*:*:*
← Back to Home
BrownCoat Threat Intelligence Platform | 2025 Steve Gray — You Can’t Take the Sky from Me