Vulnerabilities > Opcfoundation

DATE CVE VULNERABILITY TITLE RISK
2023-12-12 CVE-2023-31048 Information Exposure Through an Error Message vulnerability in Opcfoundation Ua-.Netstandard
The OPC UA .NET Standard Reference Server before 1.4.371.86.
network
low complexity
opcfoundation CWE-209
5.3
2023-05-15 CVE-2023-32787 Resource Exhaustion vulnerability in multiple products
The OPC UA Legacy Java Stack before 6f176f2 enables an attacker to block OPC UA server applications via uncontrolled resource consumption so that they can no longer serve client applications.
network
low complexity
opcfoundation prosysopc CWE-400
7.5
2022-11-17 CVE-2022-44725 Incorrect Permission Assignment for Critical Resource vulnerability in Opcfoundation Local Discovery Server
OPC Foundation Local Discovery Server (LDS) through 1.04.403.478 uses a hard-coded file path to a configuration file.
local
low complexity
opcfoundation CWE-732
7.8
2022-08-23 CVE-2022-33916 Unspecified vulnerability in Opcfoundation UA .Net Standard Stack 1.04.368
OPC UA .NET Standard Reference Server 1.04.368 allows a remote attacker to cause the application to access sensitive information.
network
low complexity
opcfoundation
7.5
2022-06-16 CVE-2022-29863 Allocation of Resources Without Limits or Throttling vulnerability in Opcfoundation UA .Net Standard Stack
OPC UA .NET Standard Stack 1.04.368 allows remote attacker to cause a crash via a crafted message that triggers excessive memory allocation.
network
low complexity
opcfoundation CWE-770
7.5
2022-06-16 CVE-2022-29864 Resource Exhaustion vulnerability in Opcfoundation UA .Net Standard Stack
OPC UA .NET Standard Stack 1.04.368 allows a remote attacker to cause a server to crash via a large number of messages that trigger Uncontrolled Resource Consumption.
network
low complexity
opcfoundation CWE-400
7.5
2022-06-16 CVE-2022-29866 Resource Exhaustion vulnerability in Opcfoundation UA .Net Standard Stack
OPC UA .NET Standard Stack 1.04.368 allows a remote attacker to exhaust the memory resources of a server via a crafted request that triggers Uncontrolled Resource Consumption.
network
low complexity
opcfoundation CWE-400
7.5
2022-06-16 CVE-2022-29862 Infinite Loop vulnerability in Opcfoundation UA .Net Standard Stack
An infinite loop in OPC UA .NET Standard Stack 1.04.368 allows a remote attackers to cause the application to hang via a crafted message.
network
low complexity
opcfoundation CWE-835
7.5
2022-06-16 CVE-2022-29865 Improper Authentication vulnerability in Opcfoundation UA .Net Standard Stack
OPC UA .NET Standard Stack allows a remote attacker to bypass the application authentication check via crafted fake credentials.
network
low complexity
opcfoundation CWE-287
7.5
2022-05-20 CVE-2022-30551 Resource Exhaustion vulnerability in Opcfoundation Ua-Java 20220401
OPC UA Legacy Java Stack 2022-04-01 allows a remote attacker to cause a server to stop processing messages by sending crafted messages that exhaust available resources.
network
low complexity
opcfoundation CWE-400
7.5