CVEInsight.

Free vulnerability intelligence for developers, security teams, and researchers. Data sourced from public databases for informational purposes only.

Explore

Legal

CVE data sourced from NVD / NIST & public disclosures.

opcfoundation

local_discovery_server

3 known vulnerabilities · sorted by CVSS score

CVE-2022-44725

HIGH7.8

OPC Foundation Local Discovery Server (LDS) through 1.04.403.478 uses a hard-coded file path to a configuration file. This allows a normal user to create a malicious file that is loaded by LDS (running as a high-privilege user).

opcfoundation / local_discovery_server

Local

Published Nov 17, 2022

CVE-2017-11672

HIGH7.8

The OPC Foundation Local Discovery Server (LDS) before 1.03.367 is installed as a Windows Service without adding double quotes around the opcualds.exe executable path, which might allow local users to gain privileges.

opcfoundation / local_discovery_server

Local

Published Jun 13, 2018

CVE-2017-17443

MEDIUM6.5

OPC Foundation Local Discovery Server (LDS) 1.03.370 required a security update to resolve multiple vulnerabilities that allow attackers to trigger a crash by placing invalid data into the configuration file. This vulnerability requires an attacker with access to the file system where the configuration file is stored; however, if the configuration file is altered the LDS will be unavailable until it is repaired.

opcfoundation / local_discovery_server

Network

Published Jun 13, 2018