CVE-2017-12070: Input Validation
First published: Thu Jun 14 2018(Updated: )
Unsigned versions of the DLLs distributed by the OPC Foundation may be replaced with malicious code.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Opcfoundation Ua-.net-legacy | =1.02.336.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2017-12070?
CVE-2017-12070 is a vulnerability where unsigned versions of the DLLs distributed by the OPC Foundation may be replaced with malicious code.
What is the severity of CVE-2017-12070?
CVE-2017-12070 has a severity rating of 8.8 (high).
Which software versions are affected by CVE-2017-12070?
CVE-2017-12070 affects the following software version: UA-.NET-Legacy 1.02.336.0
How can I fix CVE-2017-12070?
To fix CVE-2017-12070, ensure that you are using signed versions of the DLLs from the OPC Foundation and apply any available patches or updates.
Where can I find more information about CVE-2017-12070?
You can find more information about CVE-2017-12070 in the OPC Foundation Security Bulletin available at this link: https://opcfoundation-onlineapplications.org/faq/SecurityBulletins/OPC_Foundation_Security_Bulletin_CVE-2017-12070.pdf
- collector/nvd-index
- vendor/opcfoundation
- canonical/opcfoundation ua-.net-legacy
- version/opcfoundation ua-.net-legacy/1.02.336.0