ByteOS Network

edgeConnector

Source -

CNA

CNA CVEs -

ADP CVEs -

CISA CVEs -

NVD CVEs -

2Vulnerabilities found

CVE-2025-7390

Assigner-10de8ef9-5c89-4b17-8228-e97b74acf4bd

View Details

Assigner-10de8ef9-5c89-4b17-8228-e97b74acf4bd

CVSS Score-9.1||CRITICAL

EPSS-0.02% / 2.63%

7 Day CHG~0.00%

Published-21 Aug, 2025 | 06:08

Updated-22 Aug, 2025 | 18:09

Bypass the client certificate trust check of an opc.https server while only secure communication is allowed

A malicious client can bypass the client certificate trust check of an opc.https server when the server endpoint is configured to allow only secure communication.

Vendor-Softing Industrial Automation GmbH

Product-edgeAggregator OPC UA C++ SDK edgeConnector

CWE ID-CWE-295

Improper Certificate Validation

CVE-2024-0860

Assigner-Cybersecurity and Infrastructure Security Agency (CISA) Industrial Control Systems (ICS)

View Details

Assigner-Cybersecurity and Infrastructure Security Agency (CISA) Industrial Control Systems (ICS)

CVSS Score-8||HIGH

EPSS-0.04% / 10.97%

7 Day CHG~0.00%

Published-14 Mar, 2024 | 20:54

Updated-23 Jan, 2025 | 19:56

Cleartext Transmission of Sensitive Information in Softing edgeConnector and edgeAggregator

The affected product is vulnerable to a cleartext transmission of sensitive information vulnerability, which may allow an attacker to capture packets to craft their own requests.

Vendor-softing Softing softing

Product-edgeaggregator edgeconnector edgeAggregator edgeConnector edgeconnector edgeaggregator

CWE ID-CWE-319

Cleartext Transmission of Sensitive Information