In Softing uaToolkit Embedded before 1.40.1, a malformed PubSub discovery announcement message can cause a NULL pointer dereference or out-of-bounds memory access in the subscriber application.
References
Link | Resource |
---|---|
https://industrial.softing.com/fileadmin/psirt/downloads/syt-2022-10.html | Vendor Advisory |
Configurations
History
01 Feb 2023, 15:52
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-476 | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.5 |
First Time |
Softing
Softing uatoolkit Embedded |
|
CPE | cpe:2.3:a:softing:uatoolkit_embedded:*:*:*:*:*:*:*:* | |
References | (MISC) https://industrial.softing.com/fileadmin/psirt/downloads/syt-2022-10.html - Vendor Advisory |
26 Jan 2023, 21:17
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-01-26 21:17
Updated : 2023-12-10 14:48
NVD link : CVE-2022-44018
Mitre link : CVE-2022-44018
CVE.ORG link : CVE-2022-44018
JSON object : View
Products Affected
softing
- uatoolkit_embedded
CWE
CWE-476
NULL Pointer Dereference