Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
codesys vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2022-31805
In the CODESYS Development System multiple components in multiple versions transmit the passwords for the communication between clients and servers unprotected.
Codesys Runtime Toolkit
Codesys Plcwinnt
Codesys Plchandler
Codesys Opc Server
Codesys Edge Gateway
Codesys Hmi Sl
Codesys Sp Realtime Nt
Codesys Web Server
Codesys Gateway
Codesys Development System
1 Github repository
7.8
CVSSv3
CVE-2021-21867
An unsafe deserialization vulnerability exists in the ObjectManager.plugin ObjectStream.ProfileByteArray functionality of CODESYS GmbH CODESYS Development System 3.5.16 and 3.5.17. A specially crafted file can lead to arbitrary command execution. An attacker can provide a malicio...
Codesys Codesys 3.5.17.0
Codesys Codesys 3.5.16.0
7.8
CVSSv3
CVE-2021-21868
An unsafe deserialization vulnerability exists in the ObjectManager.plugin Project.get_MissingTypes() functionality of CODESYS GmbH CODESYS Development System 3.5.16 and 3.5.17. A specially crafted file can lead to arbitrary command execution. An attacker can provide a malicious ...
Codesys Codesys 3.5.17.0
Codesys Codesys 3.5.16.0
7.8
CVSSv3
CVE-2021-21869
An unsafe deserialization vulnerability exists in the Engine.plugin ProfileInformation ProfileData functionality of CODESYS GmbH CODESYS Development System 3.5.16 and 3.5.17. A specially crafted file can lead to arbitrary command execution. An attacker can provide a malicious fil...
Codesys Codesys 3.5.17.0
Codesys Codesys 3.5.16.0
7.5
CVSSv3
CVE-2019-9009
An issue exists in 3S-Smart CODESYS prior to 3.5.15.0 . Crafted network packets cause the Control Runtime to crash.
Codesys Control For Iot2000
Codesys Control For Pfc100
Codesys Control For Pfc200
Codesys Control For Raspberry Pi
Codesys Gateway
Codesys Hmi
Codesys Safety Sil2
Codesys Control For Empc-a\\/imx6
Codesys Control Rte
Codesys Linux
Codesys Simulation Runtime
Codesys Control For Beaglebone
Codesys Control Win
Codesys Runtime System Toolkit
9.8
CVSSv3
CVE-2019-16265
CODESYS V2.3 ENI server up to V3.2.2.24 has a Buffer Overflow.
Codesys Eni Server
Codesys Eni Server
Codesys Codesys
6.5
CVSSv3
CVE-2020-7052
CODESYS Control V3, Gateway V3, and HMI V3 prior to 3.5.15.30 allow uncontrolled memory allocation which can result in a remote denial of service condition.
Codesys Control For Beaglebone
Codesys Control For Empc-a\\/imx6
Codesys Control For Iot2000
Codesys Control For Linux
Codesys Control For Pfc100
Codesys Control For Pfc200
Codesys Control For Plcnext
Codesys Control For Raspberry Pi
Codesys Control Rte
Codesys Control Runtime System Toolkit
Codesys Control Win
Codesys Gateway
Codesys Hmi
Codesys Safety Sil2
Codesys Simulation Runtime
8.8
CVSSv3
CVE-2018-25048
The CODESYS runtime system in multiple versions allows an remote low privileged malicious user to use a path traversal vulnerability to access and modify all system files as well as DoS the device.
Codesys Runtime Plcwinnt
Codesys Remote Target Visu Toolkit
Codesys Embedded Target Visu Toolkit
Codesys Runtime System Toolkit
Codesys Runtime System Toolkit 3.5.15.0
Codesys Control V3 Runtime System Toolkit
Codesys Simulation Runtime
Codesys Control Win
Codesys Control Rte
Codesys Hmi
Codesys Control For Raspberry Pi
Codesys Control For Pfc200
Codesys Control For Pfc100
Codesys Control For Iot2000
Codesys Control For Empc-a\\/imx6
Codesys Control For Beaglebone
6.5
CVSSv3
CVE-2020-12068
An issue exists in CODESYS Development System prior to 3.5.16.0. CODESYS WebVisu and CODESYS Remote TargetVisu are susceptible to privilege escalation.
Codesys Control For Beaglebone
Codesys Control For Empc-a\\/imx6
Codesys Control For Iot2000
Codesys Control For Pfc100
Codesys Control For Pfc200
Codesys Control For Plcnext
Codesys Control For Raspberry Pi
Codesys Control Rte
Codesys Control Runtime System Toolkit
Codesys Control Win
Codesys Development System
Codesys Hmi
7.8
CVSSv3
CVE-2022-22516
The SysDrv3S driver in the CODESYS Control runtime system on Microsoft Windows allows any system user to read and write within restricted memory space.
Codesys Control Rte Sl
Codesys Control Rte Sl \\(for Beckhoff Cx\\)
Codesys Control Win Sl
Codesys Development System
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
firmware
CVE-2006-4304
CVE-2024-32878
CVE-2024-31502
XSS
CVE-2024-3059
CVE-2024-33692
CVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »