VYPR

CODESYS V2 runtime

by Wago

CVEs (3)

  • CVE-2018-5459CriFeb 13, 2018
    risk 0.64cvss 9.8epss 0.03

    An Improper Authentication issue was discovered in WAGO PFC200 Series 3S CoDeSys Runtime versions 2.3.X and 2.4.X. An attacker can execute different unauthenticated remote operations because of the CoDeSys Runtime application, which is available via network by default on Port…

  • CVE-2023-1620Jun 26, 2023
    risk 0.00cvss epss 0.01

    Multiple WAGO devices in multiple versions may allow an authenticated remote attacker with high privileges to DoS the device by sending a specifically crafted packet to the CODESYS V2 runtime.

  • CVE-2020-6081May 7, 2020
    risk 0.00cvss epss 0.02

    An exploitable code execution vulnerability exists in the PLC_Task functionality of 3S-Smart Software Solutions GmbH CODESYS Runtime 3.5.14.30. A specially crafted network request can cause remote code execution. An attacker can send a malicious packet to trigger this…