{"vulnerability": "CVE-2022-37013", "sightings": [{"uuid": "7baab737-7f30-40d5-9894-ac1b6f35ba5e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-37013", "type": "seen", "source": "https://t.me/cibsecurity/61067", "content": "\u203c CVE-2022-37013 \u203c\n\nThis vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Unified Automation OPC UA C++ Demo Server 1.7.6-537 [with vendor rollup]. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of certificates. A crafted certificate can force the server into an infinite loop. An attacker can leverage this vulnerability to create a denial-of-service condition on the system. Was ZDI-CAN-17203.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-29T22:21:58.000000Z"}, {"uuid": "11df270a-98d4-40ce-96b8-e621449527d1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-37013", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/6810", "content": "#exploit\n1. CVE-2022-37013:\nUnified Automation OPC UA - DoS\nhttps://sector7.computest.nl/post/2022-09-unified-automation-opcua-cpp\n\n2. CVE-2022-35742:\nMS Outlook < LTSC 2021 - DoS\nhttps://vuldb.com/ru/?id.205932\n]-> https://github.com/78ResearchLab/PoC/tree/main/CVE-2022-35742", "creation_timestamp": "2022-09-16T11:00:33.000000Z"}]}