CVE-2022-25304
CVE-2022-25304 affects all versions of the Python OPC-UA stack OPC-UA and asyncua. The root cause is a missing limit on the number of received chunks per session and across concurrent sessions, enabling a Denial of Service by an attacker sending unlimited large chunks (e.g., 2GB) without a final ...