Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Opcfoundation Subscribe
Filtered by product Local Discovery Server
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-44725 1 Opcfoundation 1 Local Discovery Server 2022-11-22 N/A 7.8 HIGH
OPC Foundation Local Discovery Server (LDS) through 1.04.403.478 uses a hard-coded file path to a configuration file. This allows a normal user to create a malicious file that is loaded by LDS (running as a high-privilege user).
CVE-2017-17443 1 Opcfoundation 1 Local Discovery Server 2018-08-08 4.0 MEDIUM 6.5 MEDIUM
OPC Foundation Local Discovery Server (LDS) 1.03.370 required a security update to resolve multiple vulnerabilities that allow attackers to trigger a crash by placing invalid data into the configuration file. This vulnerability requires an attacker with access to the file system where the configuration file is stored; however, if the configuration file is altered the LDS will be unavailable until it is repaired.
CVE-2017-11672 1 Opcfoundation 1 Local Discovery Server 2018-08-07 7.2 HIGH 7.8 HIGH
The OPC Foundation Local Discovery Server (LDS) before 1.03.367 is installed as a Windows Service without adding double quotes around the opcualds.exe executable path, which might allow local users to gain privileges.