Codesys: >> Hmi Sl >> 3.5.18.0 Security Vulnerabilities
An unauthenticated remote attacker may cause the visualisation server of the CODESYS Control runtime system to access a resource with a pointer of wrong type, potentially leading to a denial-of-service (DoS) condition.
CVSS Score
7.5
EPSS Score
0.001
Published
2025-12-01
In CODESYS Control in multiple versions a improper restriction of operations within the bounds of a memory buffer allow an remote attacker with user privileges to gain full access of the device.
CVSS Score
8.8
EPSS Score
0.008
Published
2023-08-03
In multiple products of CODESYS v3 in multiple versions a remote low privileged userĀ could utilize this vulnerability to read and modify system files and OS resources or DoS the device.
CVSS Score
8.8
EPSS Score
0.008
Published
2023-03-23
In the CODESYS Development System multiple components in multiple versions transmit the passwords for the communication between clients and servers unprotected.
CVSS Score
7.5
EPSS Score
0.003
Published
2022-06-24