The package node-opcua before 2.74.0 are vulnerable to Denial of Service (DoS) when bypassing the limitations for excessive memory consumption by sending multiple CloseSession requests with the deleteSubscription parameter equal to False.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: snyk
Published: 2022-08-24T05:05:12.475839Z
Updated: 2024-09-16T16:13:12.976Z
Reserved: 2022-02-24T00:00:00
Link: CVE-2022-24375
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2022-08-24T05:15:07.230
Modified: 2022-08-26T12:52:37.200
Link: CVE-2022-24375
Redhat
No data.