Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
codesys gateway-server vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2022-31802
In CODESYS Gateway Server V2 for versions prior to V2.3.9.38 only a part of the the specified password is been compared to the real CODESYS Gateway password. An attacker may perform authentication by specifying a small password that matches the corresponding part of the longer re...
Codesys Gateway
5.3
CVSSv3
CVE-2022-31803
In CODESYS Gateway Server V2 an insufficient check for the activity of TCP client connections allows an unauthenticated malicious user to consume all available TCP connections and prevent legitimate users or clients from establishing a new connection to the CODESYS Gateway Server...
Codesys Gateway
7.5
CVSSv3
CVE-2022-31804
The CODESYS Gateway Server V2 does not verifiy that the size of a request is within expected limits. An unauthenticated attacker may allocate an arbitrary amount of memory, which may lead to a crash of the Gateway due to an out-of-memory condition.
Codesys Gateway
NA
CVE-2015-6484
3S-Smart CODESYS Gateway Server prior to 2.3.9.48 allows remote malicious users to cause a denial of service (NULL pointer dereference and daemon crash) via a crafted (1) GET or (2) POST request.
3s-smart Software Solutions Codesys Gateway Server
NA
CVE-2015-6460
Multiple heap-based buffer overflows in 3S-Smart CODESYS Gateway Server prior to 2.3.9.34 allow remote malicious users to execute arbitrary code via opcode (1) 0x3ef or (2) 0x3f0.
3s-smart Codesys Gateway Server
NA
CVE-2013-2781
Use-after-free vulnerability in the server application in 3S CODESYS Gateway 2.3.9.27 allows remote malicious users to cause a denial of service (daemon crash) or possibly execute arbitrary code via unspecified vectors.
3s-software Codesys Gateway-server 2.3.9.27
NA
CVE-2012-4705
Directory traversal vulnerability in 3S CODESYS Gateway-Server prior to 2.3.9.27 allows remote malicious users to execute arbitrary code via vectors involving a crafted pathname.
3s-software Codesys Gateway-server 2.3.9.1
3s-software Codesys Gateway-server 2.3.8.2
3s-software Codesys Gateway-server 2.3.5.1
3s-software Codesys Gateway-server 2.3.9
3s-software Codesys Gateway-server 2.3.9.19
3s-software Codesys Gateway-server 2.3.9.3
3s-software Codesys Gateway-server 2.3.9.2
3s-software Codesys Gateway-server 2.3.5.3
3s-software Codesys Gateway-server 2.3.5.2
3s-software Codesys Gateway-server 2.3.9.18
3s-software Codesys Gateway-server 2.3.8.1
3s-software Codesys Gateway-server 2.3.8.0
3s-software Codesys Gateway-server
3s-software Codesys Gateway-server 2.3.9.5
3s-software Codesys Gateway-server 2.3.9.4
3s-software Codesys Gateway-server 2.3.7.0
3s-software Codesys Gateway-server 2.3.6.0
1 EDB exploit
NA
CVE-2012-4708
Stack-based buffer overflow in 3S CODESYS Gateway-Server prior to 2.3.9.27 allows remote malicious users to execute arbitrary code via a crafted packet.
3s-software Codesys Gateway-server 2.3.9.2
3s-software Codesys Gateway-server 2.3.9.1
3s-software Codesys Gateway-server 2.3.5.2
3s-software Codesys Gateway-server 2.3.5.1
3s-software Codesys Gateway-server 2.3.9.4
3s-software Codesys Gateway-server 2.3.9.3
3s-software Codesys Gateway-server 2.3.6.0
3s-software Codesys Gateway-server 2.3.5.3
3s-software Codesys Gateway-server 2.3.8.2
3s-software Codesys Gateway-server 2.3.8.1
3s-software Codesys Gateway-server 2.3.9
3s-software Codesys Gateway-server 2.3.9.19
3s-software Codesys Gateway-server 2.3.9.18
3s-software Codesys Gateway-server 2.3.9.5
3s-software Codesys Gateway-server 2.3.8.0
3s-software Codesys Gateway-server 2.3.7.0
3s-software Codesys Gateway-server
NA
CVE-2012-4704
Array index error in 3S CODESYS Gateway-Server prior to 2.3.9.27 allows remote malicious users to execute arbitrary code via a crafted packet.
3s-software Codesys Gateway-server 2.3.9.18
3s-software Codesys Gateway-server 2.3.8.1
3s-software Codesys Gateway-server 2.3.8.0
3s-software Codesys Gateway-server
3s-software Codesys Gateway-server 2.3.9.1
3s-software Codesys Gateway-server 2.3.8.2
3s-software Codesys Gateway-server 2.3.5.1
3s-software Codesys Gateway-server 2.3.9
3s-software Codesys Gateway-server 2.3.9.19
3s-software Codesys Gateway-server 2.3.9.5
3s-software Codesys Gateway-server 2.3.9.4
3s-software Codesys Gateway-server 2.3.7.0
3s-software Codesys Gateway-server 2.3.6.0
3s-software Codesys Gateway-server 2.3.9.3
3s-software Codesys Gateway-server 2.3.9.2
3s-software Codesys Gateway-server 2.3.5.3
3s-software Codesys Gateway-server 2.3.5.2
NA
CVE-2012-4706
Integer signedness error in 3S CODESYS Gateway-Server prior to 2.3.9.27 allows remote malicious users to cause a denial of service via a crafted packet that triggers a heap-based buffer overflow.
3s-software Codesys Gateway-server 2.3.9.1
3s-software Codesys Gateway-server 2.3.8.2
3s-software Codesys Gateway-server 2.3.5.1
3s-software Codesys Gateway-server 2.3.9
3s-software Codesys Gateway-server 2.3.9.3
3s-software Codesys Gateway-server 2.3.9.2
3s-software Codesys Gateway-server 2.3.5.3
3s-software Codesys Gateway-server 2.3.5.2
3s-software Codesys Gateway-server 2.3.9.18
3s-software Codesys Gateway-server 2.3.8.1
3s-software Codesys Gateway-server 2.3.8.0
3s-software Codesys Gateway-server 2.3.9.19
3s-software Codesys Gateway-server
3s-software Codesys Gateway-server 2.3.9.5
3s-software Codesys Gateway-server 2.3.9.4
3s-software Codesys Gateway-server 2.3.7.0
3s-software Codesys Gateway-server 2.3.6.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »