Skip to content

Incorrect Implementation of Authentication Algorithm in OPCFoundation.NetStandard.Opc.Ua.Core

Moderate
opcfoundation-org published GHSA-fvxf-r9fw-49pc Jun 15, 2022

Package

nuget OPCFoundation.NetStandard.Opc.Ua.Core (NuGet)

Affected versions

<= 1.4.368.53

Patched versions

>= 1.4.368.58

Description

https://files.opcfoundation.org/SecurityBulletins/OPC%20Foundation%20Security%20Bulletin%20CVE-2022-29865.pdf

Severity

Moderate

CVE ID

CVE-2022-29865

Weaknesses

Incorrect Implementation of Authentication Algorithm

The requirements for the product dictate the use of an established authentication algorithm, but the implementation of the algorithm is incorrect. Learn more on MITRE.