Total
3 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2022-44725 | 1 Opcfoundation | 1 Local Discovery Server | 2024-11-21 | N/A | 7.8 HIGH |
OPC Foundation Local Discovery Server (LDS) through 1.04.403.478 uses a hard-coded file path to a configuration file. This allows a normal user to create a malicious file that is loaded by LDS (running as a high-privilege user). | |||||
CVE-2017-17443 | 1 Opcfoundation | 1 Local Discovery Server | 2024-11-21 | 4.0 MEDIUM | 6.5 MEDIUM |
OPC Foundation Local Discovery Server (LDS) 1.03.370 required a security update to resolve multiple vulnerabilities that allow attackers to trigger a crash by placing invalid data into the configuration file. This vulnerability requires an attacker with access to the file system where the configuration file is stored; however, if the configuration file is altered the LDS will be unavailable until it is repaired. | |||||
CVE-2017-11672 | 1 Opcfoundation | 1 Local Discovery Server | 2024-11-21 | 7.2 HIGH | 7.8 HIGH |
The OPC Foundation Local Discovery Server (LDS) before 1.03.367 is installed as a Windows Service without adding double quotes around the opcualds.exe executable path, which might allow local users to gain privileges. |