High severity7.5NVD Advisory· Published Sep 14, 2018· Updated Jun 17, 2026
CVE-2018-12086
CVE-2018-12086
Description
Buffer overflow in OPC UA applications allows remote attackers to trigger a stack overflow with carefully structured requests.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
OPCFoundation.NetStandard.Opc.UaNuGet | < 1.4.353.15 | 1.4.353.15 |
Affected products
40- ghsa-coords40 versionspkg:nuget/opcfoundation.netstandard.opc.uapkg:rpm/opensuse/libmaxminddb&distro=openSUSE%20Leap%2015.1pkg:rpm/opensuse/spandsp&distro=openSUSE%20Leap%2015.1pkg:rpm/opensuse/wireshark&distro=openSUSE%20Leap%2015.1pkg:rpm/opensuse/wireshark&distro=openSUSE%20Tumbleweedpkg:rpm/suse/libmaxminddb&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-ESPOSpkg:rpm/suse/libmaxminddb&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-LTSSpkg:rpm/suse/libmaxminddb&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP1pkg:rpm/suse/libmaxminddb&distro=SUSE%20Linux%20Enterprise%20Server%2015-LTSSpkg:rpm/suse/libmaxminddb&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015pkg:rpm/suse/spandsp&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-ESPOSpkg:rpm/suse/spandsp&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-LTSSpkg:rpm/suse/spandsp&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP1pkg:rpm/suse/spandsp&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP1pkg:rpm/suse/spandsp&distro=SUSE%20Linux%20Enterprise%20Server%2015-LTSSpkg:rpm/suse/spandsp&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015pkg:rpm/suse/wireshark&distro=SUSE%20Enterprise%20Storage%204pkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP3pkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP4pkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-ESPOSpkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-LTSSpkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015pkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP1pkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015pkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP1pkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1-LTSSpkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2-BCLpkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2-LTSSpkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3pkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP4pkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20Server%2012-LTSSpkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20Server%2015-LTSSpkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1pkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP2pkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP3pkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP4pkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015pkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP3pkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP4pkg:rpm/suse/wireshark&distro=SUSE%20OpenStack%20Cloud%207
< 1.4.353.15+ 39 more
- (no CPE)range: < 1.4.353.15
- (no CPE)range: < 1.4.2-lp151.3.3.1
- (no CPE)range: < 0.0.6-lp151.3.3.1
- (no CPE)range: < 3.2.2-lp151.2.9.1
- (no CPE)range: < 3.4.8-1.2
- (no CPE)range: < 1.4.2-1.3.1
- (no CPE)range: < 1.4.2-1.3.1
- (no CPE)range: < 1.4.2-1.3.1
- (no CPE)range: < 1.4.2-1.3.1
- (no CPE)range: < 1.4.2-1.3.1
- (no CPE)range: < 0.0.6-3.2.1
- (no CPE)range: < 0.0.6-3.2.1
- (no CPE)range: < 0.0.6-3.2.1
- (no CPE)range: < 0.0.6-3.2.1
- (no CPE)range: < 0.0.6-3.2.1
- (no CPE)range: < 0.0.6-3.2.1
- (no CPE)range: < 2.4.10-48.32.1
- (no CPE)range: < 2.4.10-48.32.1
- (no CPE)range: < 2.4.10-48.32.1
- (no CPE)range: < 3.2.2-3.35.2
- (no CPE)range: < 3.2.2-3.35.2
- (no CPE)range: < 2.4.10-3.12.2
- (no CPE)range: < 3.2.2-3.35.2
- (no CPE)range: < 2.4.10-3.12.2
- (no CPE)range: < 3.2.2-3.35.2
- (no CPE)range: < 2.4.10-48.32.1
- (no CPE)range: < 2.4.10-48.32.1
- (no CPE)range: < 2.4.10-48.32.1
- (no CPE)range: < 2.4.10-48.32.1
- (no CPE)range: < 2.4.10-48.32.1
- (no CPE)range: < 2.4.10-48.32.1
- (no CPE)range: < 3.2.2-3.35.2
- (no CPE)range: < 2.4.10-48.32.1
- (no CPE)range: < 2.4.10-48.32.1
- (no CPE)range: < 2.4.10-48.32.1
- (no CPE)range: < 2.4.10-48.32.1
- (no CPE)range: < 3.2.2-3.35.2
- (no CPE)range: < 2.4.10-48.32.1
- (no CPE)range: < 2.4.10-48.32.1
- (no CPE)range: < 2.4.10-48.32.1
Patches
Vulnerability mechanics
References
7- www.securityfocus.com/bid/105538nvdThird Party AdvisoryVDB EntryWEB
- www.securitytracker.com/id/1041909nvdThird Party AdvisoryVDB EntryWEB
- github.com/advisories/GHSA-782p-53wq-cxmjghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2018-12086ghsaADVISORY
- opcfoundation-onlineapplications.org/faq/SecurityBulletins/OPC_Foundation_Security_Bulletin_CVE-2018-12086.pdfnvdVendor AdvisoryWEB
- www.debian.org/security/2018/dsa-4359nvdThird Party AdvisoryWEB
- lists.opensuse.org/opensuse-security-announce/2020-03/msg00027.htmlnvdWEB
News mentions
0No linked articles in our index yet.