{"id":"CVE-2020-29457","details":"A Privilege Elevation vulnerability in OPC UA .NET Standard Stack 1.4.363.107 could allow a rogue application to establish a secure connection.","aliases":["GHSA-mjww-934m-h4jw"],"modified":"2026-04-11T23:13:31.594517Z","published":"2021-02-16T20:15:15.707Z","references":[{"type":"ADVISORY","url":"https://github.com/OPCFoundation/UA-.NETStandard"},{"type":"ADVISORY","url":"https://www.nuget.org/packages/OPCFoundation.NetStandard.Opc.Ua/"},{"type":"FIX","url":"https://opcfoundation.org/SecurityBulletins/OPC%20Foundation%20Security%20Bulletin%20CVE-2020-29457.pdf"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/opcfoundation/ua-.netstandard","events":[{"introduced":"0"},{"fixed":"2e6263e19a9b90b3c53bce2118850244dcf2eb7f"}],"database_specific":{"extracted_events":[{"introduced":"0"},{"fixed":"1.4.365.10"}],"source":"CPE_FIELD","cpe":"cpe:2.3:a:opcfoundation:ua-.netstandard:*:*:*:*:*:*:*:*"}}],"versions":["1.03.350","1.04.353.15","1.04.354.21","1.04.354.23","1.4.355.26","1.4.356.27","1.4.357.28","1.4.358.30","1.4.359.31","1.4.360.33","1.4.361.39","1.4.362.42","1.4.363.49","1.4.365.2"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2020-29457.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N"}]}