Skip to main content

Ua Net Legacy

4 CVEs product

Monthly

CVE-2021-27432 HIGH This Week

OPC Foundation UA .NET Standard versions prior to 1.4.365.48 and OPC UA .NET Legacy are vulnerable to an uncontrolled recursion, which may allow an attacker to trigger a stack overflow. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Ua Net Legacy Ua Net Standard Stack
NVD
CVSS 3.1
7.5
EPSS
2.2%
CVE-2018-12087 NuGet MEDIUM PATCH This Month

Failure to validate certificates in OPC Foundation UA Client Applications communicating without security allows attackers with control over a piece of network infrastructure to decrypt passwords. Rated medium severity (CVSS 5.3), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Ua Net Legacy Ua Netstandard
NVD
CVSS 3.0
5.3
EPSS
0.3%
CVE-2018-12585 HIGH This Week

An XXE vulnerability in the OPC UA Java and .NET Legacy Stack can allow remote attackers to trigger a denial of service. Rated high severity (CVSS 8.2), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Java Denial Of Service XXE Ua Net Legacy Ua Java
NVD
CVSS 3.0
8.2
EPSS
1.6%
CVE-2018-7559 NuGet MEDIUM PATCH This Month

An issue was discovered in OPC UA .NET Standard Stack and Sample Code before GitHub commit 2018-04-12, and OPC UA .NET Legacy Stack and Sample Code before GitHub commit 2018-03-13. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable.

Oracle Information Disclosure Ua Net Legacy Ua Netstandard
NVD GitHub
CVSS 3.0
5.3
EPSS
1.6%
EPSS 2% CVSS 7.5
HIGH This Week

OPC Foundation UA .NET Standard versions prior to 1.4.365.48 and OPC UA .NET Legacy are vulnerable to an uncontrolled recursion, which may allow an attacker to trigger a stack overflow. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Ua Net Legacy Ua Net Standard Stack
NVD
EPSS 0% CVSS 5.3
MEDIUM PATCH This Month

Failure to validate certificates in OPC Foundation UA Client Applications communicating without security allows attackers with control over a piece of network infrastructure to decrypt passwords. Rated medium severity (CVSS 5.3), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Ua Net Legacy Ua Netstandard
NVD
EPSS 2% CVSS 8.2
HIGH This Week

An XXE vulnerability in the OPC UA Java and .NET Legacy Stack can allow remote attackers to trigger a denial of service. Rated high severity (CVSS 8.2), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Java Denial Of Service XXE +2
NVD
EPSS 2% CVSS 5.3
MEDIUM PATCH This Month

An issue was discovered in OPC UA .NET Standard Stack and Sample Code before GitHub commit 2018-04-12, and OPC UA .NET Legacy Stack and Sample Code before GitHub commit 2018-03-13. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable.

Oracle Information Disclosure Ua Net Legacy +1
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy