Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
3s-software vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2018-5440
A Stack-based Buffer Overflow issue exists in 3S-Smart CODESYS Web Server. Specifically: all Microsoft Windows (also WinCE) based CODESYS web servers running stand-alone Version 2.3, or as part of the CODESYS runtime system running prior to Version V1.1.9.19. A crafted request ma...
3s-software Codesys Runtime System
3s-software Codesys Web Server 2.3
7.2
CVSSv2
CVE-2015-6383
Cisco IOS XE 15.4(3)S on ASR 1000 devices improperly loads software packages, which allows local users to bypass license restrictions and obtain certain root privileges by using the CLI to enter crafted filenames, aka Bug ID CSCuv93130.
Cisco Ios Xe 15.4(3)s
5
CVSSv2
CVE-2015-6482
Runtime Toolkit prior to 2.4.7.48 in 3S-Smart CODESYS prior to 2.3.9.48 allows remote malicious users to cause a denial of service (NULL pointer dereference and application crash) via a crafted request.
3s-software Codesys Runtime System
9.3
CVSSv2
CVE-2014-0760
The Festo CECX-X-C1 Modular Master Controller with CoDeSys and CECX-X-M1 Modular Controller with CoDeSys and SoftMotion provide an undocumented access method involving the FTP protocol, which allows remote malicious users to execute arbitrary code or cause a denial of service (ap...
3s-software Codesys Runtime System -
Festo Cecx-x-c1 Modular Master Controller -
Softmotion3d Softmotion -
Festo Cecx-x-m1 Modular Controller -
9.3
CVSSv2
CVE-2014-0769
The Festo CECX-X-C1 Modular Master Controller with CoDeSys and CECX-X-M1 Modular Controller with CoDeSys and SoftMotion do not require authentication for connections to certain TCP ports, which allows remote malicious users to (1) modify the configuration via a request to the deb...
Softmotion3d Softmotion -
Festo Cecx-x-m1 Modular Controller -
3s-software Codesys Runtime System -
Festo Cecx-x-c1 Modular Master Controller -
5
CVSSv2
CVE-2014-0757
Smart Software Solutions (3S) CoDeSys Runtime Toolkit prior to 2.4.7.44 allows remote malicious users to cause a denial of service (NULL pointer dereference and application crash) via unspecified vectors.
3s-software Codesys Runtime Toolkit
10
CVSSv2
CVE-2013-2781
Use-after-free vulnerability in the server application in 3S CODESYS Gateway 2.3.9.27 allows remote malicious users to cause a denial of service (daemon crash) or possibly execute arbitrary code via unspecified vectors.
3s-software Codesys Gateway-server 2.3.9.27
10
CVSSv2
CVE-2012-4705
Directory traversal vulnerability in 3S CODESYS Gateway-Server prior to 2.3.9.27 allows remote malicious users to execute arbitrary code via vectors involving a crafted pathname.
3s-software Codesys Gateway-server 2.3.9.3
3s-software Codesys Gateway-server 2.3.9
3s-software Codesys Gateway-server 2.3.5.1
3s-software Codesys Gateway-server 2.3.9.2
3s-software Codesys Gateway-server 2.3.6.0
3s-software Codesys Gateway-server 2.3.9.1
3s-software Codesys Gateway-server 2.3.9.18
3s-software Codesys Gateway-server 2.3.9.5
3s-software Codesys Gateway-server 2.3.8.1
3s-software Codesys Gateway-server 2.3.8.2
3s-software Codesys Gateway-server 2.3.5.3
3s-software Codesys Gateway-server 2.3.9.4
3s-software Codesys Gateway-server 2.3.9.19
3s-software Codesys Gateway-server 2.3.7.0
3s-software Codesys Gateway-server
3s-software Codesys Gateway-server 2.3.5.2
3s-software Codesys Gateway-server 2.3.8.0
1 EDB exploit
10
CVSSv2
CVE-2012-4704
Array index error in 3S CODESYS Gateway-Server prior to 2.3.9.27 allows remote malicious users to execute arbitrary code via a crafted packet.
3s-software Codesys Gateway-server 2.3.9.3
3s-software Codesys Gateway-server 2.3.9
3s-software Codesys Gateway-server 2.3.5.1
3s-software Codesys Gateway-server 2.3.9.2
3s-software Codesys Gateway-server 2.3.6.0
3s-software Codesys Gateway-server 2.3.9.1
3s-software Codesys Gateway-server 2.3.9.18
3s-software Codesys Gateway-server 2.3.9.5
3s-software Codesys Gateway-server 2.3.8.1
3s-software Codesys Gateway-server 2.3.8.2
3s-software Codesys Gateway-server 2.3.5.3
3s-software Codesys Gateway-server 2.3.9.4
3s-software Codesys Gateway-server 2.3.9.19
3s-software Codesys Gateway-server 2.3.7.0
3s-software Codesys Gateway-server
3s-software Codesys Gateway-server 2.3.5.2
3s-software Codesys Gateway-server 2.3.8.0
7.8
CVSSv2
CVE-2012-4706
Integer signedness error in 3S CODESYS Gateway-Server prior to 2.3.9.27 allows remote malicious users to cause a denial of service via a crafted packet that triggers a heap-based buffer overflow.
3s-software Codesys Gateway-server 2.3.9.3
3s-software Codesys Gateway-server 2.3.9
3s-software Codesys Gateway-server 2.3.5.1
3s-software Codesys Gateway-server 2.3.9.2
3s-software Codesys Gateway-server 2.3.6.0
3s-software Codesys Gateway-server 2.3.9.1
3s-software Codesys Gateway-server 2.3.9.18
3s-software Codesys Gateway-server 2.3.9.5
3s-software Codesys Gateway-server 2.3.8.1
3s-software Codesys Gateway-server 2.3.8.2
3s-software Codesys Gateway-server 2.3.5.3
3s-software Codesys Gateway-server 2.3.9.4
3s-software Codesys Gateway-server 2.3.9.19
3s-software Codesys Gateway-server 2.3.7.0
3s-software Codesys Gateway-server
3s-software Codesys Gateway-server 2.3.5.2
3s-software Codesys Gateway-server 2.3.8.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27802
template injection
CVE-2024-0044
code injection
CVE-2024-35474
CVE-2024-27857
CVE-2024-23251
CVE-2024-23692
physical
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »