Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
3s-software codesys runtime system - vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2012-6069
Directory traversal vulnerability in the Runtime Toolkit in CODESYS Runtime System 2.3.x and 2.4.x allows remote malicious users to read, overwrite, or create arbitrary files via a .. (dot dot) in a request to the TCP listener service.
3s-software Codesys Runtime System 2.4.0
3s-software Codesys Runtime System 2.3.9.35
3s-software Codesys Runtime System 2.3.9.8
3s-software Codesys Runtime System 2.3.9.36
3s-software Codesys Runtime System 2.3.9.37
10
CVSSv2
CVE-2012-6068
The Runtime Toolkit in CODESYS Runtime System 2.3.x and 2.4.x does not require authentication, which allows remote malicious users to (1) execute commands via the command-line interface in the TCP listener service or (2) transfer files via requests to the TCP listener service.
3s-software Codesys Runtime System 2.3.9.35
3s-software Codesys Runtime System 2.3.9.8
3s-software Codesys Runtime System 2.3.9.36
3s-software Codesys Runtime System 2.3.9.37
3s-software Codesys Runtime System 2.4.0
7.5
CVSSv2
CVE-2018-5440
A Stack-based Buffer Overflow issue exists in 3S-Smart CODESYS Web Server. Specifically: all Microsoft Windows (also WinCE) based CODESYS web servers running stand-alone Version 2.3, or as part of the CODESYS runtime system running prior to Version V1.1.9.19. A crafted request ma...
3s-software Codesys Runtime System
3s-software Codesys Web Server 2.3
5
CVSSv2
CVE-2015-6482
Runtime Toolkit prior to 2.4.7.48 in 3S-Smart CODESYS prior to 2.3.9.48 allows remote malicious users to cause a denial of service (NULL pointer dereference and application crash) via a crafted request.
3s-software Codesys Runtime System
9.3
CVSSv2
CVE-2014-0760
The Festo CECX-X-C1 Modular Master Controller with CoDeSys and CECX-X-M1 Modular Controller with CoDeSys and SoftMotion provide an undocumented access method involving the FTP protocol, which allows remote malicious users to execute arbitrary code or cause a denial of service (ap...
3s-software Codesys Runtime System -
Festo Cecx-x-c1 Modular Master Controller -
Softmotion3d Softmotion -
Festo Cecx-x-m1 Modular Controller -
9.3
CVSSv2
CVE-2014-0769
The Festo CECX-X-C1 Modular Master Controller with CoDeSys and CECX-X-M1 Modular Controller with CoDeSys and SoftMotion do not require authentication for connections to certain TCP ports, which allows remote malicious users to (1) modify the configuration via a request to the deb...
Softmotion3d Softmotion -
Festo Cecx-x-m1 Modular Controller -
3s-software Codesys Runtime System -
Festo Cecx-x-c1 Modular Master Controller -
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started