← Back

Opcfoundation

opcfoundation

26 CVEs • 13 products

Products (13)

Click to collapse
Toggle
Ua .net Standard Stack
ua_.net_standard_stack
9 CVEs
Ua .netstandard
ua-.netstandard
6 CVEs
Ua .net Legacy
ua-.net-legacy
5 CVEs
Local Discovery Server
local_discovery_server
3 CVEs
Unified Architecture .net Standard
unified_architecture_.net-standard
2 CVEs
Ua Java
ua-java
2 CVEs
Unified Architecture .net Legacy
unified_architecture-.net-legacy
1 CVE
Unified Architecture Java
unified_architecture-java
1 CVE
Unified Architecture Ansic
unified_architecture_ansic
1 CVE
Netstandard.opc.ua
netstandard.opc.ua
1 CVE
Local Discover Server
local_discover_server
1 CVE
Ua Nodeset
ua-nodeset
1 CVE
Ua Java Legacy
ua_java_legacy
1 CVE

CVEs (26)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2018-12585
1Opcfoundation
2Ua .net Legacy
Ua Java
Nov 21, 2024
Sep 14, 2018
N/A· v4
8.2 HIGH· v3
6.4 MEDIUM· v2
An XXE vulnerability in the OPC UA Java and .NET Legacy Stack can allow remote attackers to trigger a denial of service.
CVE-2018-12086
2Debian
Opcfoundation
5Debian Linux
Unified Architecture .net LegacyUnified Architecture Java+2 more
Nov 21, 2024
Sep 14, 2018
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
Buffer overflow in OPC UA applications allows remote attackers to trigger a stack overflow with carefully structured requests.
CVE-2017-12070
1Opcfoundation
1Ua .net Legacy
Nov 21, 2024
Jun 14, 2018
N/A· v4
8.8 HIGH· v3
6.8 MEDIUM· v2
Unsigned versions of the DLLs distributed by the OPC Foundation may be replaced with malicious code.
CVE-2018-7559
1Opcfoundation
2Ua .net Legacy
Ua .netstandard
Nov 21, 2024
Jun 13, 2018
N/A· v4
5.3 MEDIUM· v3
3.5 LOW· v2
An issue was discovered in OPC UA .NET Standard Stack and Sample Code before GitHub commit 2018-04-12, and OPC UA .NET Legacy Stack and Sample Code before GitHub commit 2018-03-13. A vulnerability in OPC UA applications...Show more
An issue was discovered in OPC UA .NET Standard Stack and Sample Code before GitHub commit 2018-04-12, and OPC UA .NET Legacy Stack and Sample Code before GitHub commit 2018-03-13. A vulnerability in OPC UA applications can allow a remote attacker to determine a Server's private key by sending carefully constructed bad UserIdentityTokens as part of an oracle attack.Show less
CVE-2017-17443
1Opcfoundation
1Local Discovery Server
Nov 21, 2024
Jun 13, 2018
N/A· v4
6.5 MEDIUM· v3
4.0 MEDIUM· v2
OPC Foundation Local Discovery Server (LDS) 1.03.370 required a security update to resolve multiple vulnerabilities that allow attackers to trigger a crash by placing invalid data into the configuration file. This vulner...Show more
OPC Foundation Local Discovery Server (LDS) 1.03.370 required a security update to resolve multiple vulnerabilities that allow attackers to trigger a crash by placing invalid data into the configuration file. This vulnerability requires an attacker with access to the file system where the configuration file is stored; however, if the configuration file is altered the LDS will be unavailable until it is repaired.Show less
CVE-2017-11672
1Opcfoundation
1Local Discovery Server
Nov 21, 2024
Jun 13, 2018
N/A· v4
7.8 HIGH· v3
7.2 HIGH· v2
The OPC Foundation Local Discovery Server (LDS) before 1.03.367 is installed as a Windows Service without adding double quotes around the opcualds.exe executable path, which might allow local users to gain privileges.