Vendor CVEs
Codesys
All CVEs
139 total · sorted by risk| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2021-21868 | 0.00 | — | 0.02 | Aug 18, 2021 | An unsafe deserialization vulnerability exists in the ObjectManager.plugin Project.get_MissingTypes() functionality of CODESYS GmbH CODESYS Development System 3.5.16 and 3.5.17. A specially crafted file can lead to arbitrary command execution. An attacker can provide a malicious… | |||
| CVE-2021-21867 | 0.00 | — | 0.02 | Aug 18, 2021 | An unsafe deserialization vulnerability exists in the ObjectManager.plugin ObjectStream.ProfileByteArray functionality of CODESYS GmbH CODESYS Development System 3.5.16 and 3.5.17. A specially crafted file can lead to arbitrary command execution. An attacker can provide a… | |||
| CVE-2021-21863 | 0.00 | — | 0.01 | Aug 5, 2021 | A unsafe deserialization vulnerability exists in the ComponentModel Profile.FromFile() functionality of CODESYS GmbH CODESYS Development System 3.5.16 and 3.5.17. A specially crafted file can lead to arbitrary command execution. An attacker can provide a malicious file to… | |||
| CVE-2021-36764 | 0.00 | — | 0.01 | Aug 4, 2021 | In CODESYS Gateway V3 before 3.5.17.10, there is a NULL Pointer Dereference. Crafted communication requests may cause a Null pointer dereference in the affected CODESYS products and may result in a denial-of-service condition. | |||
| CVE-2021-36765 | 0.00 | — | 0.01 | Aug 4, 2021 | In CODESYS EtherNetIP before 4.1.0.0, specific EtherNet/IP requests may cause a null pointer dereference in the downloaded vulnerable EtherNet/IP stack that is executed by the CODESYS Control runtime system. | |||
| CVE-2021-33486 | 0.00 | — | 0.01 | Aug 3, 2021 | All versions of the CODESYS V3 Runtime Toolkit for VxWorks from version V3.5.8.0 and before version V3.5.17.10 have Improper Handling of Exceptional Conditions. | |||
| CVE-2021-36763 | 0.00 | — | 0.01 | Aug 3, 2021 | In CODESYS V3 web server before 3.5.17.10, files or directories are accessible to External Parties. | |||
| CVE-2021-21866 | 0.00 | — | 0.02 | Aug 2, 2021 | A unsafe deserialization vulnerability exists in the ObjectManager.plugin ProfileInformation.ProfileData functionality of CODESYS GmbH CODESYS Development System 3.5.16 and 3.5.17. A specially crafted file can lead to arbitrary command execution. An attacker can provide a… | |||
| CVE-2021-21865 | 0.00 | — | 0.01 | Aug 2, 2021 | A unsafe deserialization vulnerability exists in the PackageManagement.plugin ExtensionMethods.Clone() functionality of CODESYS GmbH CODESYS Development System 3.5.16. A specially crafted file can lead to arbitrary command execution. An attacker can provide a malicious file to… | |||
| CVE-2021-21864 | 0.00 | — | 0.02 | Aug 2, 2021 | A unsafe deserialization vulnerability exists in the ComponentModel ComponentManager.StartupCultureSettings functionality of CODESYS GmbH CODESYS Development System 3.5.16 and 3.5.17. A specially crafted file can lead to arbitrary command execution. An attacker can provide a… | |||
| CVE-2021-30195 | 0.00 | — | 0.07 | May 25, 2021 | CODESYS V2 runtime system before 2.4.7.55 has Improper Input Validation. | |||
| CVE-2021-30188 | 0.00 | — | 0.01 | May 25, 2021 | CODESYS V2 runtime system SP before 2.4.7.55 has a Stack-based Buffer Overflow. | |||
| CVE-2021-30194 | 0.00 | — | 0.01 | May 25, 2021 | CODESYS V2 Web-Server before 1.1.9.20 has an Out-of-bounds Read. | |||
| CVE-2021-30193 | 0.00 | — | 0.01 | May 25, 2021 | CODESYS V2 Web-Server before 1.1.9.20 has an Out-of-bounds Write. | |||
| CVE-2021-30192 | 0.00 | — | 0.01 | May 25, 2021 | CODESYS V2 Web-Server before 1.1.9.20 has an Improperly Implemented Security Check. | |||
| CVE-2021-30191 | 0.00 | — | 0.01 | May 25, 2021 | CODESYS V2 Web-Server before 1.1.9.20 has a a Buffer Copy without Checking the Size of the Input. | |||
| CVE-2021-30190 | 0.00 | — | 0.01 | May 25, 2021 | CODESYS V2 Web-Server before 1.1.9.20 has Improper Access Control. | |||
| CVE-2021-30189 | 0.00 | — | 0.01 | May 25, 2021 | CODESYS V2 Web-Server before 1.1.9.20 has a Stack-based Buffer Overflow. | |||
| CVE-2021-30187 | 0.00 | — | 0.00 | May 25, 2021 | CODESYS V2 runtime system SP before 2.4.7.55 has Improper Neutralization of Special Elements used in an OS Command. | |||
| CVE-2021-29240 | 0.00 | — | 0.01 | May 4, 2021 | The Package Manager of CODESYS Development System 3 before 3.5.17.0 does not check the validity of packages before installation and may be used to install CODESYS packages with malicious content. | |||
| CVE-2021-29242 | 0.00 | — | 0.01 | May 3, 2021 | CODESYS Control Runtime system before 3.5.17.0 has improper input validation. Attackers can send crafted communication packets to change the router's addressing scheme and may re-route, add, remove or change low level communication packages. | |||
| CVE-2021-29239 | 0.00 | — | 0.00 | May 3, 2021 | CODESYS Development System 3 before 3.5.17.0 displays or executes malicious documents or files embedded in libraries without first checking their validity. | |||
| CVE-2020-15806 | 0.00 | — | 0.02 | Jul 22, 2020 | CODESYS Control runtime system before 3.5.16.10 allows Uncontrolled Memory Allocation. | |||
| CVE-2020-12068 | 0.00 | — | 0.01 | May 14, 2020 | An issue was discovered in CODESYS Development System before 3.5.16.0. CODESYS WebVisu and CODESYS Remote TargetVisu are susceptible to privilege escalation. | |||
| CVE-2019-5105 | 0.00 | — | 0.02 | Mar 26, 2020 | An exploitable memory corruption vulnerability exists in the Name Service Client functionality of 3S-Smart Software Solutions CODESYS GatewayService. A specially crafted packet can cause a large memcpy, resulting in an access violation and termination of the process. An attacker… | |||
| CVE-2020-10245 | 0.00 | — | 0.02 | Mar 26, 2020 | CODESYS V3 web server before 3.5.15.40, as used in CODESYS Control runtime systems, has a buffer overflow. | |||
| CVE-2020-7052 | 0.00 | — | 0.02 | Jan 24, 2020 | CODESYS Control V3, Gateway V3, and HMI V3 before 3.5.15.30 allow uncontrolled memory allocation which can result in a remote denial of service condition. | |||
| CVE-2019-19789 | 0.00 | — | 0.01 | Dec 20, 2019 | 3S-Smart CODESYS SP Realtime NT before V2.3.7.28, CODESYS Runtime Toolkit 32 bit full before V2.4.7.54, and CODESYS PLCWinNT before V2.4.7.54 allow a NULL pointer dereference. | |||
| CVE-2019-18858 | 0.00 | — | 0.02 | Nov 20, 2019 | CODESYS 3 web server before 3.5.15.20, as distributed with CODESYS Control runtime systems, has a Buffer Overflow. | |||
| CVE-2019-16265 | 0.00 | — | 0.02 | Oct 25, 2019 | CODESYS V2.3 ENI server up to V3.2.2.24 has a Buffer Overflow. | |||
| CVE-2019-13548 | 0.00 | — | 0.06 | Sep 13, 2019 | CODESYS V3 web server, all versions prior to 3.5.14.10, allows an attacker to send specially crafted http or https requests which could cause a stack overflow and create a denial-of-service condition or allow remote code execution. | |||
| CVE-2019-13532 | 0.00 | — | 0.03 | Sep 13, 2019 | CODESYS V3 web server, all versions prior to 3.5.14.10, allows an attacker to send specially crafted http or https requests which may allow access to files outside the restricted working directory of the controller. | |||
| CVE-2019-9012 | 0.00 | — | 0.02 | Aug 15, 2019 | An issue was discovered in 3S-Smart CODESYS V3 products. A crafted communication request may cause uncontrolled memory allocations in the affected CODESYS products and may result in a denial-of-service condition. All variants of the following CODESYS V3 products in all versions… | |||
| CVE-2019-9010 | 0.00 | — | 0.02 | Aug 15, 2019 | An issue was discovered in 3S-Smart CODESYS V3 products. The CODESYS Gateway does not correctly verify the ownership of a communication channel. All variants of the following CODESYS V3 products in all versions prior to v3.5.14.20 that contain the CmpGateway component are… | |||
| CVE-2019-9013 | 0.00 | — | 0.00 | Aug 15, 2019 | An issue was discovered in 3S-Smart CODESYS V3 products. The application may utilize non-TLS based encryption, which results in user credentials being insufficiently protected during transport. All variants of the following CODESYS V3 products in all versions containing the… | |||
| CVE-2018-20025 | 0.00 | — | 0.03 | Feb 19, 2019 | Use of Insufficiently Random Values exists in CODESYS V3 products versions prior V3.5.14.0. | |||
| CVE-2018-20026 | 0.00 | — | 0.03 | Feb 19, 2019 | Improper Communication Address Filtering exists in CODESYS V3 products versions prior V3.5.14.0. | |||
| CVE-2018-10612 | 0.00 | — | 0.01 | Jan 29, 2019 | In 3S-Smart Software Solutions GmbH CODESYS Control V3 products prior to version 3.5.14.0, user access management and communication encryption is not enabled by default, which could allow an attacker access to the device and sensitive information, including user credentials. | |||
| CVE-2015-6460 | 0.00 | — | 0.06 | Sep 18, 2015 | Multiple heap-based buffer overflows in 3S-Smart CODESYS Gateway Server before 2.3.9.34 allow remote attackers to execute arbitrary code via opcode (1) 0x3ef or (2) 0x3f0. |
- CVE-2021-21868Aug 18, 2021risk 0.00cvss —epss 0.02
An unsafe deserialization vulnerability exists in the ObjectManager.plugin Project.get_MissingTypes() functionality of CODESYS GmbH CODESYS Development System 3.5.16 and 3.5.17. A specially crafted file can lead to arbitrary command execution. An attacker can provide a malicious…
- CVE-2021-21867Aug 18, 2021risk 0.00cvss —epss 0.02
An unsafe deserialization vulnerability exists in the ObjectManager.plugin ObjectStream.ProfileByteArray functionality of CODESYS GmbH CODESYS Development System 3.5.16 and 3.5.17. A specially crafted file can lead to arbitrary command execution. An attacker can provide a…
- CVE-2021-21863Aug 5, 2021risk 0.00cvss —epss 0.01
A unsafe deserialization vulnerability exists in the ComponentModel Profile.FromFile() functionality of CODESYS GmbH CODESYS Development System 3.5.16 and 3.5.17. A specially crafted file can lead to arbitrary command execution. An attacker can provide a malicious file to…
- CVE-2021-36764Aug 4, 2021risk 0.00cvss —epss 0.01
In CODESYS Gateway V3 before 3.5.17.10, there is a NULL Pointer Dereference. Crafted communication requests may cause a Null pointer dereference in the affected CODESYS products and may result in a denial-of-service condition.
- CVE-2021-36765Aug 4, 2021risk 0.00cvss —epss 0.01
In CODESYS EtherNetIP before 4.1.0.0, specific EtherNet/IP requests may cause a null pointer dereference in the downloaded vulnerable EtherNet/IP stack that is executed by the CODESYS Control runtime system.
- CVE-2021-33486Aug 3, 2021risk 0.00cvss —epss 0.01
All versions of the CODESYS V3 Runtime Toolkit for VxWorks from version V3.5.8.0 and before version V3.5.17.10 have Improper Handling of Exceptional Conditions.
- CVE-2021-36763Aug 3, 2021risk 0.00cvss —epss 0.01
In CODESYS V3 web server before 3.5.17.10, files or directories are accessible to External Parties.
- CVE-2021-21866Aug 2, 2021risk 0.00cvss —epss 0.02
A unsafe deserialization vulnerability exists in the ObjectManager.plugin ProfileInformation.ProfileData functionality of CODESYS GmbH CODESYS Development System 3.5.16 and 3.5.17. A specially crafted file can lead to arbitrary command execution. An attacker can provide a…
- CVE-2021-21865Aug 2, 2021risk 0.00cvss —epss 0.01
A unsafe deserialization vulnerability exists in the PackageManagement.plugin ExtensionMethods.Clone() functionality of CODESYS GmbH CODESYS Development System 3.5.16. A specially crafted file can lead to arbitrary command execution. An attacker can provide a malicious file to…
- CVE-2021-21864Aug 2, 2021risk 0.00cvss —epss 0.02
A unsafe deserialization vulnerability exists in the ComponentModel ComponentManager.StartupCultureSettings functionality of CODESYS GmbH CODESYS Development System 3.5.16 and 3.5.17. A specially crafted file can lead to arbitrary command execution. An attacker can provide a…
- CVE-2021-30195May 25, 2021risk 0.00cvss —epss 0.07
CODESYS V2 runtime system before 2.4.7.55 has Improper Input Validation.
- CVE-2021-30188May 25, 2021risk 0.00cvss —epss 0.01
CODESYS V2 runtime system SP before 2.4.7.55 has a Stack-based Buffer Overflow.
- CVE-2021-30194May 25, 2021risk 0.00cvss —epss 0.01
CODESYS V2 Web-Server before 1.1.9.20 has an Out-of-bounds Read.
- CVE-2021-30193May 25, 2021risk 0.00cvss —epss 0.01
CODESYS V2 Web-Server before 1.1.9.20 has an Out-of-bounds Write.
- CVE-2021-30192May 25, 2021risk 0.00cvss —epss 0.01
CODESYS V2 Web-Server before 1.1.9.20 has an Improperly Implemented Security Check.
- CVE-2021-30191May 25, 2021risk 0.00cvss —epss 0.01
CODESYS V2 Web-Server before 1.1.9.20 has a a Buffer Copy without Checking the Size of the Input.
- CVE-2021-30190May 25, 2021risk 0.00cvss —epss 0.01
CODESYS V2 Web-Server before 1.1.9.20 has Improper Access Control.
- CVE-2021-30189May 25, 2021risk 0.00cvss —epss 0.01
CODESYS V2 Web-Server before 1.1.9.20 has a Stack-based Buffer Overflow.
- CVE-2021-30187May 25, 2021risk 0.00cvss —epss 0.00
CODESYS V2 runtime system SP before 2.4.7.55 has Improper Neutralization of Special Elements used in an OS Command.
- CVE-2021-29240May 4, 2021risk 0.00cvss —epss 0.01
The Package Manager of CODESYS Development System 3 before 3.5.17.0 does not check the validity of packages before installation and may be used to install CODESYS packages with malicious content.
- CVE-2021-29242May 3, 2021risk 0.00cvss —epss 0.01
CODESYS Control Runtime system before 3.5.17.0 has improper input validation. Attackers can send crafted communication packets to change the router's addressing scheme and may re-route, add, remove or change low level communication packages.
- CVE-2021-29239May 3, 2021risk 0.00cvss —epss 0.00
CODESYS Development System 3 before 3.5.17.0 displays or executes malicious documents or files embedded in libraries without first checking their validity.
- CVE-2020-15806Jul 22, 2020risk 0.00cvss —epss 0.02
CODESYS Control runtime system before 3.5.16.10 allows Uncontrolled Memory Allocation.
- CVE-2020-12068May 14, 2020risk 0.00cvss —epss 0.01
An issue was discovered in CODESYS Development System before 3.5.16.0. CODESYS WebVisu and CODESYS Remote TargetVisu are susceptible to privilege escalation.
- CVE-2019-5105Mar 26, 2020risk 0.00cvss —epss 0.02
An exploitable memory corruption vulnerability exists in the Name Service Client functionality of 3S-Smart Software Solutions CODESYS GatewayService. A specially crafted packet can cause a large memcpy, resulting in an access violation and termination of the process. An attacker…
- CVE-2020-10245Mar 26, 2020risk 0.00cvss —epss 0.02
CODESYS V3 web server before 3.5.15.40, as used in CODESYS Control runtime systems, has a buffer overflow.
- CVE-2020-7052Jan 24, 2020risk 0.00cvss —epss 0.02
CODESYS Control V3, Gateway V3, and HMI V3 before 3.5.15.30 allow uncontrolled memory allocation which can result in a remote denial of service condition.
- CVE-2019-19789Dec 20, 2019risk 0.00cvss —epss 0.01
3S-Smart CODESYS SP Realtime NT before V2.3.7.28, CODESYS Runtime Toolkit 32 bit full before V2.4.7.54, and CODESYS PLCWinNT before V2.4.7.54 allow a NULL pointer dereference.
- CVE-2019-18858Nov 20, 2019risk 0.00cvss —epss 0.02
CODESYS 3 web server before 3.5.15.20, as distributed with CODESYS Control runtime systems, has a Buffer Overflow.
- CVE-2019-16265Oct 25, 2019risk 0.00cvss —epss 0.02
CODESYS V2.3 ENI server up to V3.2.2.24 has a Buffer Overflow.
- CVE-2019-13548Sep 13, 2019risk 0.00cvss —epss 0.06
CODESYS V3 web server, all versions prior to 3.5.14.10, allows an attacker to send specially crafted http or https requests which could cause a stack overflow and create a denial-of-service condition or allow remote code execution.
- CVE-2019-13532Sep 13, 2019risk 0.00cvss —epss 0.03
CODESYS V3 web server, all versions prior to 3.5.14.10, allows an attacker to send specially crafted http or https requests which may allow access to files outside the restricted working directory of the controller.
- CVE-2019-9012Aug 15, 2019risk 0.00cvss —epss 0.02
An issue was discovered in 3S-Smart CODESYS V3 products. A crafted communication request may cause uncontrolled memory allocations in the affected CODESYS products and may result in a denial-of-service condition. All variants of the following CODESYS V3 products in all versions…
- CVE-2019-9010Aug 15, 2019risk 0.00cvss —epss 0.02
An issue was discovered in 3S-Smart CODESYS V3 products. The CODESYS Gateway does not correctly verify the ownership of a communication channel. All variants of the following CODESYS V3 products in all versions prior to v3.5.14.20 that contain the CmpGateway component are…
- CVE-2019-9013Aug 15, 2019risk 0.00cvss —epss 0.00
An issue was discovered in 3S-Smart CODESYS V3 products. The application may utilize non-TLS based encryption, which results in user credentials being insufficiently protected during transport. All variants of the following CODESYS V3 products in all versions containing the…
- CVE-2018-20025Feb 19, 2019risk 0.00cvss —epss 0.03
Use of Insufficiently Random Values exists in CODESYS V3 products versions prior V3.5.14.0.
- CVE-2018-20026Feb 19, 2019risk 0.00cvss —epss 0.03
Improper Communication Address Filtering exists in CODESYS V3 products versions prior V3.5.14.0.
- CVE-2018-10612Jan 29, 2019risk 0.00cvss —epss 0.01
In 3S-Smart Software Solutions GmbH CODESYS Control V3 products prior to version 3.5.14.0, user access management and communication encryption is not enabled by default, which could allow an attacker access to the device and sensitive information, including user credentials.
- CVE-2015-6460Sep 18, 2015risk 0.00cvss —epss 0.06
Multiple heap-based buffer overflows in 3S-Smart CODESYS Gateway Server before 2.3.9.34 allow remote attackers to execute arbitrary code via opcode (1) 0x3ef or (2) 0x3f0.
Page 3 of 3