CVE-2022-44018

Name of the Vulnerable Software and Affected Versions Softing uaToolkit Embedded versions prior to 1.40.1

Description A malformed PubSub discovery announcement message can cause a NULL pointer dereference or out-of-bounds memory access in the subscriber application.

Recommendations For versions prior to 1.40.1, update to version 1.40.1 or later to resolve the issue. As a temporary workaround, consider restricting the handling of PubSub discovery announcement messages to prevent potential exploitation.