Codesys: >> Runtime System Toolkit Security Vulnerabilities
The CODESYS runtime system in multiple versions allows an remote low privileged attacker to use a path traversal vulnerability to access and modify all system files as well as DoS the device.
CVSS Score
8.8
EPSS Score
0.005
Published
2023-03-23
3S-Smart Software Solutions GmbH CODESYS V3 OPC UA Server, all versions 3.5.11.0 to 3.5.15.0, allows an attacker to send crafted requests from a trusted OPC UA client that cause a NULL pointer dereference, which may trigger a denial-of-service condition.
CVSS Score
6.5
EPSS Score
0.004
Published
2019-09-17
An issue was discovered in 3S-Smart CODESYS before 3.5.15.0 . Crafted network packets cause the Control Runtime to crash.
CVSS Score
7.5
EPSS Score
0.003
Published
2019-09-17