Shodan
Vulnerabilities
Vulnerable Software
Codesys:  Security Vulnerabilities
CVE-2021-36763
In CODESYS V3 web server before 3.5.17.10, files or directories are accessible to External Parties.
CVSS Score
7.5
EPSS Score
0.01
Published
2021-08-03
CVE-2021-21866
A unsafe deserialization vulnerability exists in the ObjectManager.plugin ProfileInformation.ProfileData functionality of CODESYS GmbH CODESYS Development System 3.5.16 and 3.5.17. A specially crafted file can lead to arbitrary command execution. An attacker can provide a malicious file to trigger this vulnerability.
CVSS Score
8.8
EPSS Score
0.017
Published
2021-08-02
CVE-2021-21864
A unsafe deserialization vulnerability exists in the ComponentModel ComponentManager.StartupCultureSettings functionality of CODESYS GmbH CODESYS Development System 3.5.16 and 3.5.17. A specially crafted file can lead to arbitrary command execution. An attacker can provide a malicious file to trigger this vulnerability.
CVSS Score
7.8
EPSS Score
0.017
Published
2021-08-02
CVE-2021-21865
A unsafe deserialization vulnerability exists in the PackageManagement.plugin ExtensionMethods.Clone() functionality of CODESYS GmbH CODESYS Development System 3.5.16. A specially crafted file can lead to arbitrary command execution. An attacker can provide a malicious file to trigger this vulnerability.
CVSS Score
8.8
EPSS Score
0.013
Published
2021-08-02
CVE-2021-30186
CODESYS V2 runtime system SP before 2.4.7.55 has a Heap-based Buffer Overflow.
CVSS Score
7.5
EPSS Score
0.074
Published
2021-05-25
CVE-2021-30188
CODESYS V2 runtime system SP before 2.4.7.55 has a Stack-based Buffer Overflow.
CVSS Score
9.8
EPSS Score
0.013
Published
2021-05-25
CVE-2021-30189
CODESYS V2 Web-Server before 1.1.9.20 has a Stack-based Buffer Overflow.
CVSS Score
9.8
EPSS Score
0.013
Published
2021-05-25
CVE-2021-30190
CODESYS V2 Web-Server before 1.1.9.20 has Improper Access Control.
CVSS Score
9.8
EPSS Score
0.014
Published
2021-05-25
CVE-2021-30191
CODESYS V2 Web-Server before 1.1.9.20 has a a Buffer Copy without Checking the Size of the Input.
CVSS Score
7.5
EPSS Score
0.01
Published
2021-05-25
CVE-2021-30192
CODESYS V2 Web-Server before 1.1.9.20 has an Improperly Implemented Security Check.
CVSS Score
9.8
EPSS Score
0.012
Published
2021-05-25


Products
Pricing
Contact Us

Shodan ® - All rights reserved