Denial of Service vulnerability in WVS Ops-Manager

Denial of Service vulnerability in WVS Ops-Manager

Description

The WVS OPS Manager contains libraries from other software manufacturers. In one of these applications - YARP - a vulnerability was discovered that allows Denial of Service attacks.

This vulnerability has been fixed.
The version of YARP used in the WVS OPS Manager has been updated to:

  • Version 1.1.2 for zenon 11 and 12
  • Version 2.0.1 for zenon 14

To benefit from this fix:

  • Update your zenon Software Platform to the latest build of zenon 11 or higher.




Item ID: 268901
Version: 12.00 Build: 179985
Version: 12.00 Build: 180966
Version: 11.00 Build: 176384
    • Related Articles

    • WVS: Ops-Manager Controller

      Summary The Web Visualization Service OPS Manager Controller has been equipped with a graphical user interface. Description The Web Visualization Service OPS Manager Controller allows you to configure the WVS OPS Manager settings in a GUI. The GUI is ...
    • What does the WVS Ops Manager do?

      The WVS OPS Manager is a session manager for the Web Visualization Service and addsmultisession functionality to it. The Service Engine applications managed by the WVS OPS Manager are also labeled WVS Clients. The WVS OPS Manager: Receives queries ...
    • Is the zenon product family affected by the vulnerability CVE-2022-0778 in OpenSSL?

      A vulnerability in OpenSSL has been published with the ID CVE-2022-0778, detailing a potential issue of an endless loop resulting in a denial of service, when specific invalid certificates are parsed.  Version 11 includes OpenSSL 1.1.1N that resolves ...
    • T5ZenOnRT.dll: Sluggish when using Web Visualization Ops Manager

      Description Variable using “shared memory” (Logic Service to Service Engine connection) had an unpredictable delay or were sometimes not updated at all as soon as the WVS OPS Manager was started. The issue has been fixed and the behavior is now as ...
    • CD_SVA_2023_3: Wibu Systems - CodeMeter Runtime - security vulnerability addressed

      A report has been received for the following security vulnerability in the zenon software platform: CVE-2023-3935 Further details regarding the vulnerability, mitigation options and product fixes that may be available, can be found in the document ...