Vulnerabilities > Opcfoundation > Local Discovery Server

DATE CVE VULNERABILITY TITLE RISK
2022-11-17 CVE-2022-44725 Incorrect Permission Assignment for Critical Resource vulnerability in Opcfoundation Local Discovery Server
OPC Foundation Local Discovery Server (LDS) through 1.04.403.478 uses a hard-coded file path to a configuration file.
local
low complexity
opcfoundation CWE-732
7.8
7.8
2018-06-13 CVE-2017-17443 Improper Input Validation vulnerability in Opcfoundation Local Discovery Server 1.03.370
OPC Foundation Local Discovery Server (LDS) 1.03.370 required a security update to resolve multiple vulnerabilities that allow attackers to trigger a crash by placing invalid data into the configuration file.
network
low complexity
opcfoundation CWE-20
6.5
6.5
2018-06-13 CVE-2017-11672 Unquoted Search Path or Element vulnerability in Opcfoundation Local Discovery Server 1.03.355
The OPC Foundation Local Discovery Server (LDS) before 1.03.367 is installed as a Windows Service without adding double quotes around the opcualds.exe executable path, which might allow local users to gain privileges.
local
low complexity
opcfoundation CWE-428
7.8
7.8