Uatoolkit Embedded Security Vulnerabilities and Issues — Uatoolkit Embedded CVE List

SoftingUatoolkit Embedded

4 matches found

CVE•added 2021/11/10 10:46 p.m.•55 views

CVE-2021-40872

The CVE-2021-40872 issue affects Softing Industrial Automation uaToolkit Embedded prior to version 1.40. Affected component: the OPC/UA server implemented by uaToolkit Embedded. Root cause: invalid type cast leading to server process crash on crafted messages. Impact: remote attacker can cause a ...

7.5CVSS7.5AI score0.01463EPSS

CVE•added 2021/11/10 10:48 p.m.•50 views

CVE-2021-40873

The CVE-2021-40873 issue affects Softing Industrial Automation’s OPC UA C++ SDK (pre-5.66) and uaToolkit Embedded (pre-1.40). The vulnerability is a remote-triggered denial of service due to a double-free error that can cause the server process to crash and require restart. Exploitation is descri...

7.5CVSS7.4AI score0.01267EPSS

CVE•added 2023/01/25 12:0 a.m.•48 views

CVE-2022-45920

CVE-2022-45920 affects Softing uaToolkit Embedded prior to version 1.41. The root cause is a malformed CreateMonitoredItems request that can cause a memory leak, with CVSSv3.1 metrics indicating NETWORK attack vector, LOW attack complexity, no privileges or user interaction required, and an avail...

7.5CVSS7.5AI score0.0088EPSS

CVE•added 2023/01/25 12:0 a.m.•45 views

CVE-2022-44018

CVE-2022-44018 affects Softing uaToolkit Embedded prior to 1.40.1. A malformed PubSub discovery announcement message can trigger a NULL pointer dereference or out-of-bounds memory access in the subscriber application, potentially causing a crash or instability. Affected component is the PubSub di...

7.5CVSS7.5AI score0.00837EPSS