Opcfoundation Ua-.net-legacy — known CVE vulnerabilities
Every CVE whose affected-product data names Opcfoundation Ua-.net-legacy, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2017-12070 — CVSS 8.8 (high): Unsigned versions of the DLLs distributed by the OPC Foundation may be replaced with malicious code.
CVE-2018-12585 — CVSS 8.2 (high): An XXE vulnerability in the OPC UA Java and .NET Legacy Stack can allow remote attackers to trigger a denial of service.
CVE-2021-27432 — CVSS 7.5 (high): OPC Foundation UA .NET Standard versions prior to 1.4.365.48 and OPC UA .NET Legacy are vulnerable to an uncontrolled recursion, which may…
CVE-2018-12087 — CVSS 5.3 (medium): Failure to validate certificates in OPC Foundation UA Client Applications communicating without security allows attackers with control over…
CVE-2018-7559 — CVSS 5.3 (medium): An issue was discovered in OPC UA .NET Standard Stack and Sample Code before GitHub commit 2018-04-12, and OPC UA .NET Legacy Stack and…