CVE-2022-39823: Use After Free
First published: Thu Oct 20 2022(Updated: )
An issue was discovered in Softing OPC UA C++ SDK 5.66 through 6.x before 6.10. An OPC/UA browse request exceeding the server limit on continuation points may cause a use-after-free error
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Softing OPC | >=5.20<=5.22 | |
| Softing Opc Ua C\+\+ Software Development Kit | >=5.70<=6.00 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2022-39823?
CVE-2022-39823 is a vulnerability discovered in Softing OPC UA C++ SDK 5.66 through 6.x before 6.10 that can cause a use-after-free error when an OPC/UA browse request exceeds the server limit on continuation points.
How severe is CVE-2022-39823?
CVE-2022-39823 has a severity rating of 7.5 out of 10 (high).
Which software versions are affected by CVE-2022-39823?
CVE-2022-39823 affects Softing OPC UA C++ SDK versions 5.66 through 6.x before 6.10.
What is the Common Vulnerabilities and Exposures (CVE) ID for this vulnerability?
The Common Vulnerabilities and Exposures (CVE) ID for this vulnerability is CVE-2022-39823.
How can CVE-2022-39823 be mitigated?
To mitigate CVE-2022-39823, users are advised to update to Softing OPC UA C++ SDK version 6.10 or later.
- collector/nvd-index
- agent/severity
- agent/references
- agent/weakness
- agent/author
- agent/type
- agent/tags
- agent/event
- agent/description
- agent/first-publish-date
- agent/last-modified-date
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- vendor/softing
- canonical/softing opc
- version/softing opc/5.20
- version/softing opc/5.22
- canonical/softing opc ua c\+\+ software development kit
- version/softing opc ua c\+\+ software development kit/5.70
- version/softing opc ua c\+\+ software development kit/6.00