Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
codesys gateway-server vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2022-31802
In CODESYS Gateway Server V2 for versions prior to V2.3.9.38 only a part of the the specified password is been compared to the real CODESYS Gateway password. An attacker may perform authentication by specifying a small password that matches the corresponding part of the longer re...
Codesys Gateway
7.5
CVSSv3
CVE-2022-31804
The CODESYS Gateway Server V2 does not verifiy that the size of a request is within expected limits. An unauthenticated attacker may allocate an arbitrary amount of memory, which may lead to a crash of the Gateway due to an out-of-memory condition.
Codesys Gateway
5.3
CVSSv3
CVE-2022-31803
In CODESYS Gateway Server V2 an insufficient check for the activity of TCP client connections allows an unauthenticated malicious user to consume all available TCP connections and prevent legitimate users or clients from establishing a new connection to the CODESYS Gateway Server...
Codesys Gateway
NA
CVE-2015-6484
3S-Smart CODESYS Gateway Server prior to 2.3.9.48 allows remote malicious users to cause a denial of service (NULL pointer dereference and daemon crash) via a crafted (1) GET or (2) POST request.
3s-smart Software Solutions Codesys Gateway Server
NA
CVE-2015-6460
Multiple heap-based buffer overflows in 3S-Smart CODESYS Gateway Server prior to 2.3.9.34 allow remote malicious users to execute arbitrary code via opcode (1) 0x3ef or (2) 0x3f0.
3s-smart Codesys Gateway Server
NA
CVE-2013-2781
Use-after-free vulnerability in the server application in 3S CODESYS Gateway 2.3.9.27 allows remote malicious users to cause a denial of service (daemon crash) or possibly execute arbitrary code via unspecified vectors.
3s-software Codesys Gateway-server 2.3.9.27
NA
CVE-2012-4707
3S CODESYS Gateway-Server prior to 2.3.9.27 allows remote malicious users to execute arbitrary code via vectors that trigger an out-of-bounds memory access.
3s-software Codesys Gateway-server 2.3.9
3s-software Codesys Gateway-server 2.3.8.1
3s-software Codesys Gateway-server 2.3.8.2
3s-software Codesys Gateway-server 2.3.9.1
3s-software Codesys Gateway-server 2.3.9.2
3s-software Codesys Gateway-server 2.3.8.0
3s-software Codesys Gateway-server 2.3.5.1
3s-software Codesys Gateway-server
3s-software Codesys Gateway-server 2.3.9.18
3s-software Codesys Gateway-server 2.3.9.5
3s-software Codesys Gateway-server 2.3.5.2
3s-software Codesys Gateway-server 2.3.5.3
3s-software Codesys Gateway-server 2.3.9.4
3s-software Codesys Gateway-server 2.3.9.3
3s-software Codesys Gateway-server 2.3.6.0
3s-software Codesys Gateway-server 2.3.7.0
NA
CVE-2012-4705
Directory traversal vulnerability in 3S CODESYS Gateway-Server prior to 2.3.9.27 allows remote malicious users to execute arbitrary code via vectors involving a crafted pathname.
3s-software Codesys Gateway-server 2.3.9.1
3s-software Codesys Gateway-server 2.3.8.2
3s-software Codesys Gateway-server 2.3.5.1
3s-software Codesys Gateway-server 2.3.9
3s-software Codesys Gateway-server 2.3.9.19
3s-software Codesys Gateway-server 2.3.9.3
3s-software Codesys Gateway-server 2.3.9.2
3s-software Codesys Gateway-server 2.3.5.3
3s-software Codesys Gateway-server 2.3.5.2
3s-software Codesys Gateway-server 2.3.9.18
3s-software Codesys Gateway-server 2.3.8.1
3s-software Codesys Gateway-server 2.3.8.0
3s-software Codesys Gateway-server
3s-software Codesys Gateway-server 2.3.9.5
3s-software Codesys Gateway-server 2.3.9.4
3s-software Codesys Gateway-server 2.3.7.0
3s-software Codesys Gateway-server 2.3.6.0
1 EDB exploit
NA
CVE-2012-4706
Integer signedness error in 3S CODESYS Gateway-Server prior to 2.3.9.27 allows remote malicious users to cause a denial of service via a crafted packet that triggers a heap-based buffer overflow.
3s-software Codesys Gateway-server 2.3.9.1
3s-software Codesys Gateway-server 2.3.8.2
3s-software Codesys Gateway-server 2.3.5.1
3s-software Codesys Gateway-server 2.3.9
3s-software Codesys Gateway-server 2.3.9.3
3s-software Codesys Gateway-server 2.3.9.2
3s-software Codesys Gateway-server 2.3.5.3
3s-software Codesys Gateway-server 2.3.5.2
3s-software Codesys Gateway-server 2.3.9.18
3s-software Codesys Gateway-server 2.3.8.1
3s-software Codesys Gateway-server 2.3.8.0
3s-software Codesys Gateway-server 2.3.9.19
3s-software Codesys Gateway-server
3s-software Codesys Gateway-server 2.3.9.5
3s-software Codesys Gateway-server 2.3.9.4
3s-software Codesys Gateway-server 2.3.7.0
3s-software Codesys Gateway-server 2.3.6.0
NA
CVE-2012-4708
Stack-based buffer overflow in 3S CODESYS Gateway-Server prior to 2.3.9.27 allows remote malicious users to execute arbitrary code via a crafted packet.
3s-software Codesys Gateway-server 2.3.9.2
3s-software Codesys Gateway-server 2.3.9.1
3s-software Codesys Gateway-server 2.3.5.2
3s-software Codesys Gateway-server 2.3.5.1
3s-software Codesys Gateway-server 2.3.9.4
3s-software Codesys Gateway-server 2.3.9.3
3s-software Codesys Gateway-server 2.3.6.0
3s-software Codesys Gateway-server 2.3.5.3
3s-software Codesys Gateway-server 2.3.8.2
3s-software Codesys Gateway-server 2.3.8.1
3s-software Codesys Gateway-server 2.3.9
3s-software Codesys Gateway-server 2.3.9.19
3s-software Codesys Gateway-server 2.3.9.18
3s-software Codesys Gateway-server 2.3.9.5
3s-software Codesys Gateway-server 2.3.8.0
3s-software Codesys Gateway-server 2.3.7.0
3s-software Codesys Gateway-server
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »