Uatoolkit Embedded

uatoolkit_embedded

Vendor: Softing • 4 CVEs

CVEs (4)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2022-45920 1Softing 1Uatoolkit Embedded Apr 1, 2025 Jan 26, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 In Softing uaToolkit Embedded before 1.41, a malformed CreateMonitoredItems request may cause a memory leak.
CVE-2022-44018 1Softing 1Uatoolkit Embedded Apr 1, 2025 Jan 26, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 In Softing uaToolkit Embedded before 1.40.1, a malformed PubSub discovery announcement message can cause a NULL pointer dereference or out-of-bounds memory access in the subscriber application.
CVE-2021-40873 1Softing 7Datafeed Opc Suite EdgeconnectorOpc+4 more Nov 21, 2024 Nov 10, 2021 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 An issue was discovered in Softing Industrial Automation OPC UA C++ SDK before 5.66, and uaToolkit Embedded before 1.40. Remote attackers to cause a denial of service (DoS) by sending crafted messages to a client or serv...Show more An issue was discovered in Softing Industrial Automation OPC UA C++ SDK before 5.66, and uaToolkit Embedded before 1.40. Remote attackers to cause a denial of service (DoS) by sending crafted messages to a client or server. The server process may crash unexpectedly because of a double free, and must be restarted.Show less
CVE-2021-40872 1Softing 2Smartlink Hw Dp Uatoolkit Embedded Nov 21, 2024 Nov 10, 2021 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 An issue was discovered in Softing Industrial Automation uaToolkit Embedded before 1.40. Remote attackers to cause a denial of service (DoS) or login as an anonymous user (bypassing security checks) by sending crafted me...Show more An issue was discovered in Softing Industrial Automation uaToolkit Embedded before 1.40. Remote attackers to cause a denial of service (DoS) or login as an anonymous user (bypassing security checks) by sending crafted messages to a OPC/UA server. The server process may crash unexpectedly because of an invalid type cast, and must be restarted.Show less