CVE-2017-17443

MEDIUM

OPC Foundation Local Discovery Server - Denial of Service via Configuration File Tampering

Title source: llm
STIX 2.1

Description

OPC Foundation Local Discovery Server (LDS) 1.03.370 required a security update to resolve multiple vulnerabilities that allow attackers to trigger a crash by placing invalid data into the configuration file. This vulnerability requires an attacker with access to the file system where the configuration file is stored; however, if the configuration file is altered the LDS will be unavailable until it is repaired.

Scores

CVSS v3 6.5
EPSS 0.0090
EPSS Percentile 55.2%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

CWE
CWE-20
Status published
Products (1)
opcfoundation/local_discovery_server 1.03.370
Published Jun 13, 2018
Tracked Since Feb 18, 2026