Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
codesys gateway vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2015-6484
3S-Smart CODESYS Gateway Server prior to 2.3.9.48 allows remote malicious users to cause a denial of service (NULL pointer dereference and daemon crash) via a crafted (1) GET or (2) POST request.
3s-smart Software Solutions Codesys Gateway Server
6.5
CVSSv3
CVE-2020-7052
CODESYS Control V3, Gateway V3, and HMI V3 prior to 3.5.15.30 allow uncontrolled memory allocation which can result in a remote denial of service condition.
Codesys Control For Beaglebone
Codesys Control For Empc-a\\/imx6
Codesys Control For Iot2000
Codesys Control For Linux
Codesys Control For Pfc100
Codesys Control For Pfc200
Codesys Control For Plcnext
Codesys Control For Raspberry Pi
Codesys Control Rte
Codesys Control Runtime System Toolkit
Codesys Control Win
Codesys Gateway
Codesys Hmi
Codesys Safety Sil2
Codesys Simulation Runtime
9.8
CVSSv3
CVE-2019-9010
An issue exists in 3S-Smart CODESYS V3 products. The CODESYS Gateway does not correctly verify the ownership of a communication channel. All variants of the following CODESYS V3 products in all versions prior to v3.5.14.20 that contain the CmpGateway component are affected, regar...
Codesys Control For Beaglebone Sl
Codesys Control For Empc-a\\/imx6 Sl
Codesys Control For Iot2000 Sl
Codesys Control For Linux Sl
Codesys Control For Pfc100 Sl
Codesys Control For Pfc200 Sl
Codesys Control For Raspberry Pi Sl
Codesys Control Runtime Toolkit
Codesys Development System
Codesys Gateway
7.5
CVSSv3
CVE-2019-9012
An issue exists in 3S-Smart CODESYS V3 products. A crafted communication request may cause uncontrolled memory allocations in the affected CODESYS products and may result in a denial-of-service condition. All variants of the following CODESYS V3 products in all versions prior to ...
Codesys Control For Beaglebone Sl
Codesys Control For Empc-a\\/imx6 Sl
Codesys Control For Iot2000 Sl
Codesys Control For Linux Sl
Codesys Control For Pfc100 Sl
Codesys Control For Pfc200 Sl
Codesys Control For Raspberry Pi Sl
Codesys Control Runtime Toolkit
Codesys Development System
Codesys Gateway
7.5
CVSSv3
CVE-2018-20025
Use of Insufficiently Random Values exists in CODESYS V3 products versions prior V3.5.14.0.
Codesys Control For Beaglebone Sl
Codesys Control For Linux Sl
Codesys Control For Pfc100 Sl
Codesys Hmi Sl
Codesys Gateway
Codesys Control Rte Sl
Codesys Control Rte Sl \\(for Beckhoff Cx\\)
Codesys Control For Pfc200 Sl
Codesys Control For Raspberry Pi Sl
Codesys Development System
Codesys Control For Empc-a\\/imx6 Sl
Codesys Control For Iot2000 Sl
Codesys Control Win Sl
Codesys Control Runtime Toolkit
Codesys Safety Sil2
7.5
CVSSv3
CVE-2018-20026
Improper Communication Address Filtering exists in CODESYS V3 products versions prior V3.5.14.0.
Codesys Control For Beaglebone Sl
Codesys Control For Empc-a\\/imx6 Sl
Codesys Control For Iot2000 Sl
Codesys Control For Linux Sl
Codesys Control For Pfc100 Sl
Codesys Control For Pfc200 Sl
Codesys Control For Raspberry Pi Sl
Codesys Control Rte Sl
Codesys Control Rte Sl \\(for Beckhoff Cx\\)
Codesys Control Win Sl
Codesys Control Runtime Toolkit
Codesys Safety Sil2
Codesys Hmi Sl
Codesys Gateway
Codesys Development System V3
Codesys Plchandler
Codesys Opc Server
Codesys Targetvisu Sl
7.5
CVSSv3
CVE-2019-5105
An exploitable memory corruption vulnerability exists in the Name Service Client functionality of 3S-Smart Software Solutions CODESYS GatewayService. A specially crafted packet can cause a large memcpy, resulting in an access violation and termination of the process. An attacker ...
Codesys Codesys 3.5.13.2
5.5
CVSSv3
CVE-2019-5106
A hard-coded encryption key vulnerability exists in the authentication functionality of WAGO e!Cockpit version 1.5.1.1. An attacker with access to communications between e!Cockpit and CoDeSyS Gateway can trivially recover the password of any user attempting to log in, in plain te...
Wago E\\!cockpit 1.5.1.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3