GHSA-5q2v-6j86-5h9v

Source
https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/06/GHSA-5q2v-6j86-5h9v/GHSA-5q2v-6j86-5h9v.json
Aliases
  • CVE-2022-29862
Published
2022-06-17T21:44:01Z
Modified
2022-06-17T22:18:05.058946Z
Details

A vulnerability was discovered in OPC UA .NET Standard Stack that allows a malicious client or server to cause a peer to hang with a carefully crafted message sent during secure channel creation.

References

Affected packages

NuGet / OPCFoundation.NetStandard.Opc.Ua

OPCFoundation.NetStandard.Opc.Ua

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0
Fixed
1.4.368.58

Affected versions

0.*

0.4.0
0.4.1
0.4.3
0.4.4
0.4.5

1.*

1.3.348
1.3.349
1.3.350
1.3.350.1
1.3.350.3
1.3.350.4
1.3.350.5
1.3.350.6
1.3.351.7
1.3.352.10
1.3.352.11
1.3.352.12
1.3.352.9
1.4.353.13
1.4.353.14
1.4.353.15
1.4.354.16-preview
1.4.354.18-preview
1.4.354.19-preview
1.4.354.20-preview
1.4.354.21
1.4.354.23
1.4.355.24-preview
1.4.355.25
1.4.355.26
1.4.356.27
1.4.357.28
1.4.358.29-preview
1.4.358.30
1.4.359.31
1.4.360.33
1.4.360.34
1.4.361.38
1.4.361.39
1.4.362.40-preview
1.4.362.41-preview
1.4.362.42
1.4.363.104-preview
1.4.363.107
1.4.363.47-preview
1.4.363.48-preview
1.4.363.49
1.4.364.40
1.4.365.1-preview
1.4.365.10
1.4.365.2
1.4.365.23
1.4.365.48
1.4.366.31-preview
1.4.366.38
1.4.367.100
1.4.367.39
1.4.367.41
1.4.367.42
1.4.367.64-preview
1.4.367.75
1.4.367.95
1.4.368.27-preview
1.4.368.33
1.4.368.52-preview
1.4.368.53

Database specific

{
    "last_known_affected_version_range": "<= 1.4.368.53"
}