org.eclipse.milo:sdk-server@0.2.1 vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the org.eclipse.milo:sdk-server package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • M
Denial of Service (DoS)

org.eclipse.milo:sdk-server is an open-source implementation of OPC UA

Affected versions of this package are vulnerable to Denial of Service (DoS) when bypassing the limitations for excessive memory consumption by sending multiple CloseSession requests with the deleteSubscription parameter equal to False.

How to fix Denial of Service (DoS)?

Upgrade org.eclipse.milo:sdk-server to version 0.6.8 or higher.

[,0.6.8)