GHSA-4cvp-hr63-822j

Source

https://github.com/advisories/GHSA-4cvp-hr63-822j

Import Source

https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2023/05/GHSA-4cvp-hr63-822j/GHSA-4cvp-hr63-822j.json

Aliases

CVE-2023-31048

Published

2023-05-05T02:19:11Z

Modified

2024-02-16T08:06:01.934995Z

Details

This security update resolves a vulnerability in the OPC UA .NET Standard Reference Server that allows remote attackers to send malicious requests that expose sensitive information.

https://files.opcfoundation.org/SecurityBulletins/OPC%20Foundation%20Security%20Bulletin%20CVE-2023-31048.pdf

References

Affected packages

NuGet / OPCFoundation.NetStandard.Opc.Ua.Core

Package

Name: OPCFoundation.NetStandard.Opc.Ua.Core

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0The exact introduced commit is unknown

Fixed

1.4.371.86

Affected versions

0.*

0.0.3

0.0.6

0.0.7

0.0.8

0.0.9

0.1.0

0.1.1

0.1.2

0.1.3

0.1.5

0.1.6

0.1.7

0.1.8

0.1.9

0.2.0

0.2.1

0.2.2

0.2.3

0.2.4

1.*

1.4.363.104-preview

1.4.363.107

1.4.364.40

1.4.365-gfc341ee8c5

1.4.365.1-preview

1.4.365.2

1.4.365.10

1.4.365.23

1.4.365.48

1.4.366.31-preview

1.4.366.38

1.4.367.39

1.4.367.41

1.4.367.42

1.4.367.64-preview

1.4.367.75

1.4.367.95

1.4.367.100

1.4.368.27-preview

1.4.368.33

1.4.368.52-preview

1.4.368.53

1.4.368.58

1.4.369.30

1.4.370.1

1.4.370.9

1.4.370.12

1.4.371.41

1.4.371.50

1.4.371.60

NuGet / OPCFoundation.NetStandard.Opc.Ua.Server