Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
codesys runtime toolkit vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2021-36763
In CODESYS V3 web server prior to 3.5.17.10, files or directories are accessible to External Parties.
Codesys Control Win Sl
Codesys Control Runtime System Toolkit
Codesys Embedded Target Visu Toolkit
Codesys Hmi
Codesys Remote Target Visu Toolkit
Codesys Control Rte
Codesys Control
NA
CVE-2014-0757
Smart Software Solutions (3S) CoDeSys Runtime Toolkit prior to 2.4.7.44 allows remote malicious users to cause a denial of service (NULL pointer dereference and application crash) via unspecified vectors.
3s-software Codesys Runtime Toolkit
7.5
CVSSv3
CVE-2020-15806
CODESYS Control runtime system prior to 3.5.16.10 allows Uncontrolled Memory Allocation.
Codesys Control Rte
Codesys Control For Beaglebone
Codesys Control For Empc-a/imx6
Codesys Control For Iot2000
Codesys Control For Linux
Codesys Control For Plcnext
Codesys Control For Pfc100
Codesys Control For Pfc200
Codesys Control For Raspberry Pi
Codesys Control For Wago Touch Panels 600
Codesys Control Win
Codesys Hmi
Codesys Control Runtime System Toolkit
Codesys Simulation Runtime
Codesys Embedded Target Visu Toolkit
Codesys Remote Target Visu Toolkit
7.5
CVSSv3
CVE-2022-31805
In the CODESYS Development System multiple components in multiple versions transmit the passwords for the communication between clients and servers unprotected.
Codesys Runtime Toolkit
Codesys Plcwinnt
Codesys Plchandler
Codesys Opc Server
Codesys Edge Gateway
Codesys Hmi Sl
Codesys Sp Realtime Nt
Codesys Web Server
Codesys Gateway
Codesys Development System
1 Github repository
7.5
CVSSv3
CVE-2019-13532
CODESYS V3 web server, all versions before 3.5.14.10, allows an malicious user to send specially crafted http or https requests which may allow access to files outside the restricted working directory of the controller.
Codesys Control Rte
Codesys Control For Beaglebone
Codesys Control For Empc-a/imx6
Codesys Control For Iot2000
Codesys Control For Linux
Codesys Control For Pfc100
Codesys Control For Pfc200
Codesys Control For Raspberry Pi
Codesys Control Win
Codesys Hmi
Codesys Control Runtime System Toolkit
Codesys Embedded Target Visu Toolkit
Codesys Remote Target Visu Toolkit
9.8
CVSSv3
CVE-2019-13548
CODESYS V3 web server, all versions before 3.5.14.10, allows an malicious user to send specially crafted http or https requests which could cause a stack overflow and create a denial-of-service condition or allow remote code execution.
Codesys Control Rte
Codesys Control For Beaglebone
Codesys Control For Empc-a/imx6
Codesys Control For Iot2000
Codesys Control For Linux
Codesys Control For Pfc100
Codesys Control For Pfc200
Codesys Control For Raspberry Pi
Codesys Control Win
Codesys Hmi
Codesys Control Runtime System Toolkit
Codesys Embedded Target Visu Toolkit
Codesys Remote Target Visu Toolkit
9.8
CVSSv3
CVE-2019-18858
CODESYS 3 web server prior to 3.5.15.20, as distributed with CODESYS Control runtime systems, has a Buffer Overflow.
Codesys Control For Empc-a/imx6
Codesys Control For Iot2000
Codesys Control For Linux
Codesys Control For Plcnext
Codesys Control For Pfc100
Codesys Control For Pfc200
Codesys Control For Raspberry Pi
Codesys Control Rte
Codesys Control Win
Codesys Hmi
Codesys Control Runtime System Toolkit
Codesys Embedded Target Visu Toolkit
Codesys Remote Target Visu Toolkit
Codesys Control For Beaglebone
9.8
CVSSv3
CVE-2020-10245
CODESYS V3 web server prior to 3.5.15.40, as used in CODESYS Control runtime systems, has a buffer overflow.
Codesys Control For Plcnext
Codesys Control For Beaglebone
Codesys Control For Empc-a/imx6
Codesys Control For Iot2000
Codesys Control For Linux
Codesys Control For Pfc100
Codesys Control For Pfc200
Codesys Control For Raspberry Pi
Codesys Control Rte
Codesys Control Runtime System Toolkit
Codesys Control Win
Codesys Embedded Target Visu Toolkit
Codesys Hmi
Codesys Remote Target Visu Toolkit
7.5
CVSSv3
CVE-2019-9009
An issue exists in 3S-Smart CODESYS prior to 3.5.15.0 . Crafted network packets cause the Control Runtime to crash.
Codesys Gateway
Codesys Hmi
Codesys Simulation Runtime
Codesys Safety Sil2
Codesys Control For Beaglebone
Codesys Control For Empc-a/imx6
Codesys Control For Iot2000
Codesys Control For Pfc100
Codesys Control For Pfc200
Codesys Control For Raspberry Pi
Codesys Control Rte
Codesys Control Win
Codesys Linux
Codesys Runtime System Toolkit
7.3
CVSSv3
CVE-2021-29242
CODESYS Control Runtime system prior to 3.5.17.0 has improper input validation. Attackers can send crafted communication packets to change the router's addressing scheme and may re-route, add, remove or change low level communication packages.
Codesys Gateway
Codesys Control Rte
Codesys Control Win
Codesys Embedded Target Visu Toolkit
Codesys Remote Target Visu Toolkit
Codesys Safety Sil
Codesys Edge Gateway
Codesys Hmi
Codesys Simulation Runtime
Codesys Plchandler
Codesys Control Runtime System Toolkit
Codesys Control For Empc-a/imx6 Sl
Codesys Control For Iot2000 Sl
Codesys Control For Linux Sl
Codesys Control For Linux Arm Sl
Codesys Control For Plcnext Sl
Codesys Control For Pfc100 Sl
Codesys Control For Pfc200 Sl
Codesys Control For Raspberry Pi Sl
Codesys Control For Wago Touch Panels 600 Sl
Codesys Control For Beaglebone Sl
Codesys Opc Server
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
logic flaw
CVE-2024-23692
CVE-2024-26229
CVE-2024-35255
CVE-2024-5835
CVE-2024-5837
XML external entity
dos
CVE-2024-5813
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »