VulnerableCode Package Details - pkg:nuget/OPCFoundation.NetStandard.Opc.Ua.Core@1.5.372.1-rc

Search for packages

Vulnerability	Summary	Fixed by
VCID-53xw-2jd2-pugg Aliases: CVE-2024-45526 GHSA-7vfh-cqpc-4267	Security Update for the OPC UA .NET Standard Stack This security update resolves a vulnerability in the OPC UA .NET Standard Stack that allows an unauthorized attacker to trigger a gradual degradation in performance.	1.5.374.118 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-pmtm-p8gm-xkcp Aliases: GHSA-qm9f-c3v9-wphv	Security Update for the OPC UA .NET Standard Stack This security update resolves a vulnerability in the OPC UA .NET Standard Stack that enables an unauthorized attacker to trigger a rapid increase in memory consumption.	1.5.374.54 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-ue5w-bjqp-9kfc Aliases: CVE-2024-42512 GHSA-h958-fxgg-g7w3	Security Update for the OPC UA .NET Standard Stack This security update resolves a vulnerability in the OPC UA .NET Standard Stack that allows an unauthorized attacker to bypass application authentication when the deprecated Basic128Rsa15 security policy is enabled. Note that the Basic128Rsa15 is disabled by default so most users will not be affected. When this patch is applied the Server closes all channels using the Basic128Rsa15 if an attack is detected. This introduces a DoS before any compromise can occur which is preferable to a compromise. To prevent this failure, applications must stop using Basic128Rsa15.	1.5.374.158 Affected by 0 other vulnerabilities.
VCID-ur54-987z-5ue5 Aliases: CVE-2024-33862 GHSA-4q2p-hwmr-qcxc	OPCFoundation.NetStandard.Opc.Ua.Core buffer-management vulnerability A buffer-management vulnerability in OPC Foundation OPCFoundation.NetStandard.Opc.Ua.Core before 1.5.374.54 could allow remote attackers to exhaust memory resources. It is triggered when the system receives an excessive number of messages from a remote source. This could potentially lead to a denial of service (DoS) condition, disrupting the normal operation of the system.	1.5.374.54 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}

Vulnerability

Summary

Fixed by

VCID-53xw-2jd2-pugg
Aliases:
CVE-2024-45526
GHSA-7vfh-cqpc-4267

Security Update for the OPC UA .NET Standard Stack This security update resolves a vulnerability in the OPC UA .NET Standard Stack that allows an unauthorized attacker to trigger a gradual degradation in performance.

1.5.374.118
Affected by 1 other vulnerability.

VCID-pmtm-p8gm-xkcp
Aliases:
GHSA-qm9f-c3v9-wphv

Security Update for the OPC UA .NET Standard Stack This security update resolves a vulnerability in the OPC UA .NET Standard Stack that enables an unauthorized attacker to trigger a rapid increase in memory consumption.

1.5.374.54
Affected by 2 other vulnerabilities.

VCID-ue5w-bjqp-9kfc
Aliases:
CVE-2024-42512
GHSA-h958-fxgg-g7w3

Security Update for the OPC UA .NET Standard Stack This security update resolves a vulnerability in the OPC UA .NET Standard Stack that allows an unauthorized attacker to bypass application authentication when the deprecated Basic128Rsa15 security policy is enabled. Note that the Basic128Rsa15 is disabled by default so most users will not be affected. When this patch is applied the Server closes all channels using the Basic128Rsa15 if an attack is detected. This introduces a DoS before any compromise can occur which is preferable to a compromise. To prevent this failure, applications must stop using Basic128Rsa15.

1.5.374.158
Affected by 0 other vulnerabilities.

VCID-ur54-987z-5ue5
Aliases:
CVE-2024-33862
GHSA-4q2p-hwmr-qcxc

OPCFoundation.NetStandard.Opc.Ua.Core buffer-management vulnerability A buffer-management vulnerability in OPC Foundation OPCFoundation.NetStandard.Opc.Ua.Core before 1.5.374.54 could allow remote attackers to exhaust memory resources. It is triggered when the system receives an excessive number of messages from a remote source. This could potentially lead to a denial of service (DoS) condition, disrupting the normal operation of the system.

1.5.374.54
Affected by 2 other vulnerabilities.

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Vulnerability

Summary

Aliases

This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T23:22:10.992831+00:00	GitLab Importer	Affected by	VCID-ue5w-bjqp-9kfc	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/OPCFoundation.NetStandard.Opc.Ua.Core/CVE-2024-42512.yml	38.4.0
2026-04-16T23:12:06.205556+00:00	GitLab Importer	Affected by	VCID-53xw-2jd2-pugg	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/OPCFoundation.NetStandard.Opc.Ua.Core/CVE-2024-45526.yml	38.4.0
2026-04-16T23:12:05.271695+00:00	GitLab Importer	Affected by	VCID-pmtm-p8gm-xkcp	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/OPCFoundation.NetStandard.Opc.Ua.Core/GHSA-qm9f-c3v9-wphv.yml	38.4.0
2026-04-16T23:03:46.575677+00:00	GitLab Importer	Affected by	VCID-ur54-987z-5ue5	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/OPCFoundation.NetStandard.Opc.Ua.Core/CVE-2024-33862.yml	38.4.0
2026-04-12T00:41:17.025597+00:00	GitLab Importer	Affected by	VCID-ue5w-bjqp-9kfc	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/OPCFoundation.NetStandard.Opc.Ua.Core/CVE-2024-42512.yml	38.3.0
2026-04-12T00:30:32.448854+00:00	GitLab Importer	Affected by	VCID-53xw-2jd2-pugg	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/OPCFoundation.NetStandard.Opc.Ua.Core/CVE-2024-45526.yml	38.3.0
2026-04-12T00:30:31.832295+00:00	GitLab Importer	Affected by	VCID-pmtm-p8gm-xkcp	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/OPCFoundation.NetStandard.Opc.Ua.Core/GHSA-qm9f-c3v9-wphv.yml	38.3.0
2026-04-12T00:21:39.625040+00:00	GitLab Importer	Affected by	VCID-ur54-987z-5ue5	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/OPCFoundation.NetStandard.Opc.Ua.Core/CVE-2024-33862.yml	38.3.0
2026-04-03T00:49:12.425226+00:00	GitLab Importer	Affected by	VCID-ue5w-bjqp-9kfc	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/OPCFoundation.NetStandard.Opc.Ua.Core/CVE-2024-42512.yml	38.1.0
2026-04-03T00:38:12.052100+00:00	GitLab Importer	Affected by	VCID-53xw-2jd2-pugg	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/OPCFoundation.NetStandard.Opc.Ua.Core/CVE-2024-45526.yml	38.1.0
2026-04-03T00:38:11.268803+00:00	GitLab Importer	Affected by	VCID-pmtm-p8gm-xkcp	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/OPCFoundation.NetStandard.Opc.Ua.Core/GHSA-qm9f-c3v9-wphv.yml	38.1.0
2026-04-03T00:29:12.878121+00:00	GitLab Importer	Affected by	VCID-ur54-987z-5ue5	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/OPCFoundation.NetStandard.Opc.Ua.Core/CVE-2024-33862.yml	38.1.0