Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
codesys vulnerabilities and exploits
(subscribe to this query)
7.3
CVSSv3
CVE-2023-3670
In CODESYS Development System 3.5.9.0 to 3.5.17.0 and CODESYS Scripting 4.0.0.0 to 4.1.0.0 unsafe directory permissions would allow an attacker with local access to the workstation to place potentially harmful and disguised scripts that could be executed by legitimate users.
Codesys Scripting
Codesys Development System
4.9
CVSSv3
CVE-2023-1620
Multiple WAGO devices in multiple versions may allow an authenticated remote attacker with high privileges to DoS the device by sending a specifically crafted packet to the CODESYS V2 runtime.
Wago 750-331 Firmware
Wago 750-8202 Firmware
Wago 750-8202 Firmware Fw22
Wago 750-8202\\/000-011 Firmware
Wago 750-8202\\/000-011 Firmware Fw22
Wago 750-8202\\/000-012 Firmware
Wago 750-8202\\/000-012 Firmware Fw22
Wago 750-8202\\/000-022 Firmware
Wago 750-8202\\/000-022 Firmware Fw22
Wago 750-8202\\/025-000 Firmware
Wago 750-8202\\/025-000 Firmware Fw22
Wago 750-8202\\/025-001 Firmware
Wago 750-8202\\/025-001 Firmware Fw22
Wago 750-8202\\/025-002 Firmware
Wago 750-8202\\/025-002 Firmware Fw22
Wago 750-8202\\/040-000 Firmware
Wago 750-8202\\/040-000 Firmware Fw22
Wago 750-8202\\/040-001 Firmware
Wago 750-8202\\/040-001 Firmware Fw22
Wago 750-8203 Firmware
Wago 750-8203 Firmware Fw22
Wago 750-8203\\/025-000 Firmware
6.5
CVSSv3
CVE-2022-47392
An authenticated, remote attacker may use a improper input validation vulnerability in the CmpApp/CmpAppBP/CmpAppForce Components of multiple CODESYS products in multiple versions to read from an invalid address which can lead to a denial-of-service condition.
Codesys Safety Sil2 Runtime Toolkit
Codesys Safety Sil2 Psp
Codesys Hmi \\(sl\\)
Codesys Development System V3
Codesys Control Win \\(sl\\)
Codesys Control Runtime System Toolkit
Codesys Control Rte \\(sl\\)
Codesys Control Rte \\(for Beckhoff Cx\\) Sl
Codesys Control For Wago Touch Panels 600 Sl
Codesys Control For Raspberry Pi Sl
Codesys Control For Plcnext Sl
Codesys Control For Pfc200 Sl
Codesys Control For Pfc100 Sl
Codesys Control For Linux Sl
Codesys Control For Iot2000 Sl
Codesys Control For Empc-a\\/imx6 Sl
Codesys Control For Beaglebone Sl
6.5
CVSSv3
CVE-2022-47393
An authenticated, remote attacker may use a Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple versions of multiple CODESYS products to force a denial-of-service situation.
Codesys Safety Sil2 Runtime Toolkit
Codesys Safety Sil2 Psp
Codesys Hmi \\(sl\\)
Codesys Development System V3
Codesys Control Win \\(sl\\)
Codesys Control Runtime System Toolkit
Codesys Control Rte \\(sl\\)
Codesys Control Rte \\(for Beckhoff Cx\\) Sl
Codesys Control For Wago Touch Panels 600 Sl
Codesys Control For Raspberry Pi Sl
Codesys Control For Plcnext Sl
Codesys Control For Pfc200 Sl
Codesys Control For Pfc100 Sl
Codesys Control For Linux Sl
Codesys Control For Iot2000 Sl
Codesys Control For Empc-a\\/imx6 Sl
Codesys Control For Beaglebone Sl
1 Article
8.8
CVSSv3
CVE-2022-47385
An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the CmpAppForce Component of multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote cod...
Codesys Safety Sil2 Runtime Toolkit
Codesys Safety Sil2 Psp
Codesys Hmi \\(sl\\)
Codesys Development System V3
Codesys Control Win \\(sl\\)
Codesys Control Runtime System Toolkit
Codesys Control Rte \\(sl\\)
Codesys Control Rte \\(for Beckhoff Cx\\) Sl
Codesys Control For Wago Touch Panels 600 Sl
Codesys Control For Raspberry Pi Sl
Codesys Control For Plcnext Sl
Codesys Control For Pfc200 Sl
Codesys Control For Pfc100 Sl
Codesys Control For Linux Sl
Codesys Control For Iot2000 Sl
Codesys Control For Empc-a\\/imx6 Sl
Codesys Control For Beaglebone Sl
7.7
CVSSv3
CVE-2022-4048
Inadequate Encryption Strength in CODESYS Development System V3 versions prior to V3.5.18.40 allows an unauthenticated local malicious user to access and manipulate code of the encrypted boot application.
Codesys Development System V3
8.8
CVSSv3
CVE-2022-47379
An authenticated, remote attacker may use a out-of-bounds write vulnerability in multiple CODESYS products in multiple versions to write data into memory which can lead to a denial-of-service condition, memory overwriting, or remote code execution.
Codesys Safety Sil2 Runtime Toolkit
Codesys Safety Sil2 Psp
Codesys Hmi \\(sl\\)
Codesys Development System V3
Codesys Control Win \\(sl\\)
Codesys Control Runtime System Toolkit
Codesys Control Rte \\(sl\\)
Codesys Control Rte \\(for Beckhoff Cx\\) Sl
Codesys Control For Wago Touch Panels 600 Sl
Codesys Control For Raspberry Pi Sl
Codesys Control For Plcnext Sl
Codesys Control For Pfc200 Sl
Codesys Control For Pfc100 Sl
Codesys Control For Linux Sl
Codesys Control For Iot2000 Sl
Codesys Control For Empc-a\\/imx6 Sl
Codesys Control For Beaglebone Sl
1 Article
8.8
CVSSv3
CVE-2022-47380
An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution.
Codesys Safety Sil2 Runtime Toolkit
Codesys Safety Sil2 Psp
Codesys Hmi \\(sl\\)
Codesys Development System V3
Codesys Control Win \\(sl\\)
Codesys Control Runtime System Toolkit
Codesys Control Rte \\(sl\\)
Codesys Control Rte \\(for Beckhoff Cx\\) Sl
Codesys Control For Wago Touch Panels 600 Sl
Codesys Control For Raspberry Pi Sl
Codesys Control For Plcnext Sl
Codesys Control For Pfc200 Sl
Codesys Control For Pfc100 Sl
Codesys Control For Linux Sl
Codesys Control For Iot2000 Sl
Codesys Control For Empc-a\\/imx6 Sl
Codesys Control For Beaglebone Sl
8.8
CVSSv3
CVE-2022-47381
An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution.
Codesys Safety Sil2 Runtime Toolkit
Codesys Safety Sil2 Psp
Codesys Hmi \\(sl\\)
Codesys Development System V3
Codesys Control Win \\(sl\\)
Codesys Control Runtime System Toolkit
Codesys Control Rte \\(sl\\)
Codesys Control Rte \\(for Beckhoff Cx\\) Sl
Codesys Control For Wago Touch Panels 600 Sl
Codesys Control For Raspberry Pi Sl
Codesys Control For Plcnext Sl
Codesys Control For Pfc200 Sl
Codesys Control For Pfc100 Sl
Codesys Control For Linux Sl
Codesys Control For Iot2000 Sl
Codesys Control For Empc-a\\/imx6 Sl
Codesys Control For Beaglebone Sl
8.8
CVSSv3
CVE-2022-47382
An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code...
Codesys Safety Sil2 Runtime Toolkit
Codesys Safety Sil2 Psp
Codesys Hmi \\(sl\\)
Codesys Development System V3
Codesys Control Win \\(sl\\)
Codesys Control Runtime System Toolkit
Codesys Control Rte \\(sl\\)
Codesys Control Rte \\(for Beckhoff Cx\\) Sl
Codesys Control For Wago Touch Panels 600 Sl
Codesys Control For Raspberry Pi Sl
Codesys Control For Plcnext Sl
Codesys Control For Pfc200 Sl
Codesys Control For Pfc100 Sl
Codesys Control For Linux Sl
Codesys Control For Iot2000 Sl
Codesys Control For Empc-a\\/imx6 Sl
Codesys Control For Beaglebone Sl
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »