CVE-2019-13542 Information

Description

3S-Smart Software Solutions GmbH CODESYS V3 OPC UA Server all versions 3.5.11.0 to 3.5.15.0 allows an attacker to send crafted requests from a trusted OPC UA client that cause a NULL pointer dereference which may trigger a denial-of-service condition.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Reference

https://www.us-cert.gov/ics/advisories/icsa-19-255-04

Attack Complexity

LOW

Privileges Required

LOW

User Interaction Required

LOW

Scope

NONE

Confidentiality Impact

UNCHANGED

Integrity Impact

NONE

Availability Impact

NONE

Base Score

HIGH

Base Severity

6.5