7 matches found
Linux Distros Unpatched Vulnerability : CVE-2022-25304
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - All versions of package opcua; all versions of package asyncua are vulnerable to Denial of Service DoS due to a missing limitation on the number of received...
datapoints (>=0.0.1 <=0.0.2), hvl-ccb (>=0.12.0 <=0.12.3) potentially affected by CVE-2022-25304 via asyncua (>=0.9.94 <=0.9.95)
asyncua PYPI version =0.9.94, =0.0.1, =0.12.0, =0.12.3 Source cves: CVE-2022-25304 Source advisory: OSV:GHSA-MFPJ-3QHM-976M...
aristote-malo (=1.9.5), biobridge (>=0.1.0 <=0.2.5) +25 more potentially affected by CVE-2022-25304 via opcua (=0.98.13)
opcua PYPI version =0.98.13 is affected by a known vulnerability. The following packages have a transitive dependency on opcua and may be impacted: - aristote-malo =1.9.5 - biobridge =0.1.0, =5.1.0, =1.4.1b1, =0.7.0b1, =0.3.3, =0.1.0, =0.1.2.post1 - opc-full-connect =0.1.0 and more Source cves:...
CVE-2022-25304
All versions of package opcua; all versions of package asyncua are vulnerable to Denial of Service DoS due to a missing limitation on the number of received chunks - per single session or in total for all concurrent sessions. An attacker can exploit this vulnerability by sending an unlimited numb...
CVE-2022-25304 Denial of Service (DoS)
All versions of package opcua; all versions of package asyncua are vulnerable to Denial of Service DoS due to a missing limitation on the number of received chunks - per single session or in total for all concurrent sessions. An attacker can exploit this vulnerability by sending an unlimited numb...
CVE-2022-25304
CVE-2022-25304 affects all versions of the Python OPC-UA stack OPC-UA and asyncua. The root cause is a missing limit on the number of received chunks per session and across concurrent sessions, enabling a Denial of Service by an attacker sending unlimited large chunks (e.g., 2GB) without a final ...
datapoints (>=0.0.1 <=0.0.2), hvl-ccb (>=0.12.0 <=0.12.3) potentially affected by CVE-2022-25304 via asyncua (>=0.9.94 <=0.9.95)
asyncua PYPI version =0.9.94, =0.0.1, =0.12.0, =0.12.3 Source cves: CVE-2022-25304 Source advisory: SNYK:PYTHON-ASYNCUA-2988731...