Vulnerability Details CVE-2021-36764
In CODESYS Gateway V3 before 3.5.17.10, there is a NULL Pointer Dereference. Crafted communication requests may cause a Null pointer dereference in the affected CODESYS products and may result in a denial-of-service condition.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 61.9%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
References
Products affected by CVE-2021-36764
-
cpe:2.3:a:codesys:gateway:3.0
-
cpe:2.3:a:codesys:gateway:3.5.14.0
-
cpe:2.3:a:codesys:gateway:3.5.14.20
-
cpe:2.3:a:codesys:gateway:3.5.15.0
-
cpe:2.3:a:codesys:gateway:3.5.15.30
-
cpe:2.3:a:codesys:gateway:3.5.16.70
-
cpe:2.3:a:codesys:gateway:3.5.17.0
-
cpe:2.3:a:codesys:gateway:3.5.8.60