CODESYS V2 web server
by Codesys
CVEs (6)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2018-5440 | Cri | 0.64 | 9.8 | 0.03 | Feb 15, 2018 | A Stack-based Buffer Overflow issue was discovered in 3S-Smart CODESYS Web Server. Specifically: all Microsoft Windows (also WinCE) based CODESYS web servers running stand-alone Version 2.3, or as part of the CODESYS runtime system running prior to Version V1.1.9.19. A crafted… | ||
| CVE-2021-34583 | 0.00 | — | 0.08 | Oct 26, 2021 | Crafted web server requests may cause a heap-based buffer overflow and could therefore trigger a denial-of- service condition due to a crash in the CODESYS V2 web server prior to V1.1.9.22. | |||
| CVE-2021-36763 | 0.00 | — | 0.01 | Aug 3, 2021 | In CODESYS V3 web server before 3.5.17.10, files or directories are accessible to External Parties. | |||
| CVE-2021-30193 | 0.00 | — | 0.01 | May 25, 2021 | CODESYS V2 Web-Server before 1.1.9.20 has an Out-of-bounds Write. | |||
| CVE-2020-10245 | 0.00 | — | 0.02 | Mar 26, 2020 | CODESYS V3 web server before 3.5.15.40, as used in CODESYS Control runtime systems, has a buffer overflow. | |||
| CVE-2019-18858 | 0.00 | — | 0.02 | Nov 20, 2019 | CODESYS 3 web server before 3.5.15.20, as distributed with CODESYS Control runtime systems, has a Buffer Overflow. |
- risk 0.64cvss 9.8epss 0.03
A Stack-based Buffer Overflow issue was discovered in 3S-Smart CODESYS Web Server. Specifically: all Microsoft Windows (also WinCE) based CODESYS web servers running stand-alone Version 2.3, or as part of the CODESYS runtime system running prior to Version V1.1.9.19. A crafted…
- CVE-2021-34583Oct 26, 2021risk 0.00cvss —epss 0.08
Crafted web server requests may cause a heap-based buffer overflow and could therefore trigger a denial-of- service condition due to a crash in the CODESYS V2 web server prior to V1.1.9.22.
- CVE-2021-36763Aug 3, 2021risk 0.00cvss —epss 0.01
In CODESYS V3 web server before 3.5.17.10, files or directories are accessible to External Parties.
- CVE-2021-30193May 25, 2021risk 0.00cvss —epss 0.01
CODESYS V2 Web-Server before 1.1.9.20 has an Out-of-bounds Write.
- CVE-2020-10245Mar 26, 2020risk 0.00cvss —epss 0.02
CODESYS V3 web server before 3.5.15.40, as used in CODESYS Control runtime systems, has a buffer overflow.
- CVE-2019-18858Nov 20, 2019risk 0.00cvss —epss 0.02
CODESYS 3 web server before 3.5.15.20, as distributed with CODESYS Control runtime systems, has a Buffer Overflow.