CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-12087

Failure to validate certificates in OPC Foundation UA Client Applications communicating without security allows attackers with control over a piece of network infrastructure to decrypt passwords.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 8.1%

CVSS Severity

CVSS v3 Score 5.3

CVSS v2 Score 2.1

References

Products affected by CVE-2018-12087

Opcfoundation » Ua-.net-Legacy » Version: 1.03.342

cpe:2.3:a:opcfoundation:ua-.net-legacy:1.03.342
Opcfoundation » Ua-.netstandard » Version: 1.04.353.15

cpe:2.3:a:opcfoundation:ua-.netstandard:1.04.353.15
Opcfoundation » Ua-.netstandard » Version: 1.04.354.21

cpe:2.3:a:opcfoundation:ua-.netstandard:1.04.354.21
Opcfoundation » Ua-.netstandard » Version: 1.04.354.23

cpe:2.3:a:opcfoundation:ua-.netstandard:1.04.354.23
Opcfoundation » Ua-.netstandard » Version: 1.4.355.26

cpe:2.3:a:opcfoundation:ua-.netstandard:1.4.355.26
Opcfoundation » Ua-.netstandard » Version: 1.4.356.27

cpe:2.3:a:opcfoundation:ua-.netstandard:1.4.356.27
Opcfoundation » Ua-.netstandard » Version: 1.4.357.28

cpe:2.3:a:opcfoundation:ua-.netstandard:1.4.357.28
Opcfoundation » Ua-.netstandard » Version: 1.4.358.30

cpe:2.3:a:opcfoundation:ua-.netstandard:1.4.358.30
Opcfoundation » Ua-.netstandard » Version: 1.4.359.31

cpe:2.3:a:opcfoundation:ua-.netstandard:1.4.359.31
Opcfoundation » Ua-.netstandard » Version: 1.4.371.86

cpe:2.3:a:opcfoundation:ua-.netstandard:1.4.371.86

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-12087

Products

Pricing

Contact Us