Filtered by vendor Freeopcua Subscriptions
Filtered by product Opcua-asyncio Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2023-26151 1 Freeopcua 1 Opcua-asyncio 2024-11-21 5.3 Medium
Versions of the package asyncua before 0.9.96 are vulnerable to Denial of Service (DoS) such that an attacker can send a malformed packet and as a result, the server will enter into an infinite loop and consume excessive memory.
CVE-2023-26150 1 Freeopcua 1 Opcua-asyncio 2024-11-21 6.5 Medium
Versions of the package asyncua before 0.9.96 are vulnerable to Improper Authentication such that it is possible to access Address Space without encryption and authentication. **Note:** This issue is a result of missing checks for services that require an active session.