After successful authentication as a user in multiple Codesys products in multiple versions, specific crafted remote communication requests can cause the CmpAppBP component to overwrite a heap-based buffer, which can lead to a denial-of-service condition.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
codesys control for empc-a\\/imx6 sl |
||
codesys control for beaglebone sl |
||
codesys control for wago touch panels 600 sl |
||
codesys control for raspberry pi sl |
||
codesys control for plcnext sl |
||
codesys control for pfc200 sl |
||
codesys control for pfc100 sl |
||
codesys control for linux sl |
||
codesys control for iot2000 sl |
||
codesys control rte sl \\(for beckhoff cx\\) |
||
codesys safety sil2 |
||
codesys hmi |
||
codesys development system |
||
codesys control win sl |
||
codesys control runtime system toolkit |
||
codesys control rte sl |
Vulmon