An issue was discovered in OPC Foundation OPCFoundation/UA-.NETStandard through 1.5.374.78. A remote attacker can send requests with invalid credentials and cause the server performance to degrade gradually.
Loading...
Loading...
This medium-severity CVE scores 5.3 under NVD CVSS v3. EPSS exploit probability: 0.3%, top 43% of all CVEs by exploit prediction. GitHub Security Advisory data not yet ingested — confidence will rise once GHSA publishes (typical lag: hours to days for open-source ecosystem CVEs; never for infrastructure-only CVEs).
An issue was discovered in OPC Foundation OPCFoundation/UA-.NETStandard through 1.5.374.78. A remote attacker can send requests with invalid credentials and cause the server performance to degrade gradually.
October 22, 2024
April 15, 2026
| Package | Vulnerable range | Fixed in | Dependents |
|---|---|---|---|
| OPCFoundation.NetStandard.Opc.Ua | 0.4.0 ... 1.5.374.78 (105 versions) | 1.5.374.118 | — |
| OPCFoundation.NetStandard.Opc.Ua.Core | 0.0.3 ... 1.5.374.78 (80 versions) | 1.5.374.118 | — |
MITRE Common Weakness Enumeration — the root-cause categories this CVE belongs to.
See which npm, PyPI, Go, and Maven packages are affected by CVE-2024-45526
EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.