Home/Product/softing edgeaggregator
Product

softing edgeaggregator

17 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2023-39482
< 3.70
Softing Secure Integration Server Hardcoded Cryptographic Key Information Disclosure Vulnerability. This vulnerability allows remo
6.5MEDIUM
 CVE-2023-38125
< 3.50
Softing edgeAggregator Permissive Cross-domain Policy with Untrusted Domains Remote Code Execution Vulnerability. This vulnerabili
8.8HIGH
 CVE-2023-27336
< 3.70
Softing edgeConnector Siemens OPC UA Server Null Pointer Dereference Denial-of-Service Vulnerability. This vulnerability allows re
7.5HIGH
 CVE-2023-27335
< 3.70
Softing edgeAggregator Client Cross-Site Scripting Remote Code Execution Vulnerability. This vulnerability allows remote attackers
9.6CRITICAL
 CVE-2023-27334
< 3.70
Softing edgeConnector Siemens ConditionRefresh Resource Exhaustion Denial-of-Service Vulnerability. This vulnerability allows remo
7.5HIGH
 CVE-2024-0860
all versions
The affected product is vulnerable to a cleartext transmission of sensitive information vulnerability, which may allow an attacker
8.0HIGH
 CVE-2023-38126
all versions
Softing edgeAggregator Restore Configuration Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows re
7.2HIGH
 CVE-2022-37453
<= 3.50
An issue was discovered in Softing OPC UA C++ SDK before 6.10. A buffer overflow or an excess allocation happens due to unchecked
7.5HIGH
 CVE-2022-2547
all versions
A crafted HTTP packet without a content-type header can create a denial-of-service condition in Softing Secure Integration Server
7.5HIGH
 CVE-2022-2338
all versions
Softing Secure Integration Server V1.22 is vulnerable to authentication bypass via a machine-in-the-middle attack. The default the
5.7MEDIUM
 CVE-2022-2337
all versions
A crafted HTTP packet with a missing HTTP URI can create a denial-of-service condition in Softing Secure Integration Server V1.22.
7.5HIGH
 CVE-2022-2336
all versions
Softing Secure Integration Server, edgeConnector, and edgeAggregator software ships with the default administrator credentials as
9.8CRITICAL
 CVE-2022-2335
all versions
A crafted HTTP packet with a -1 content-length header can create a denial-of-service condition in Softing Secure Integration Serve
7.5HIGH
 CVE-2022-2334
all versions
The application searches for a library dll that is not found. If an attacker can place a dll with this name, then the attacker can
7.2HIGH
 CVE-2022-1748
all versions
Softing OPC UA C++ Server SDK, Secure Integration Server, edgeConnector, edgeAggregator, OPC Suite, and uaGate are affected by a N
7.5HIGH
 CVE-2022-1373
all versions
The “restore configuration” feature of Softing Secure Integration Server V1.22 is vulnerable to a directory traversal vulnerab
7.2HIGH
 CVE-2022-1069
all versions
A crafted HTTP packet with a large content-length header can create a denial-of-service condition in Softing Secure Integration Se
7.5HIGH
SOC and Response
CVE triage
Stack monitoring
Am I affected
IOC triage
KEV catalog
Recently exploited
Daily brief
Change tracking
Detection Engineering
Coverage workspace
Detection coverage
Coverage check
Telemetry ceiling
SIEM query builder
Sigma rules
SIEM rules
YARA rules
Network rules
D3FEND
Threat Hunting
Threat actors
ATT&CK techniques
Attack paths
Indicators
Atomic tests
Red Team and Pentest
Exploitability triage
Recon pack
Attack paths
CAPEC patterns
Adversary emulation
Compliance and GRC
Framework mapping
Control assessment
Audit view
Coverage report
Atlas Search Threat actors Techniques Tools & malware CWE CAPEC KEV catalog Package vulns
About All capabilities Pricing API docs Live status Privacy policy Terms of service
threatengine.sh