Shodan
Vulnerabilities
Vulnerable Software
Codesys:  >> Control Runtime System Toolkit  >> 3.5.19.20  Security Vulnerabilities
CVE-2022-4046
In CODESYS Control in multiple versions a improper restriction of operations within the bounds of a memory buffer allow an remote attacker with user privileges to gain full access of the device.
CVSS Score
8.8
EPSS Score
0.013
Published
2023-08-03
CVE-2022-47392
An authenticated, remote attacker may use a improper input validation vulnerability in the CmpApp/CmpAppBP/CmpAppForce Components of multiple CODESYS products in multiple versions to read from an invalid address which can lead to a denial-of-service condition.
CVSS Score
6.5
EPSS Score
0.003
Published
2023-05-15
CVE-2022-47393
An authenticated, remote attacker may use a Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple versions of multiple CODESYS products to force a denial-of-service situation.
CVSS Score
6.5
EPSS Score
0.004
Published
2023-05-15
CVE-2022-47387
An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution.
CVSS Score
8.8
EPSS Score
0.019
Published
2023-05-15
CVE-2022-47388
An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution.
CVSS Score
8.8
EPSS Score
0.019
Published
2023-05-15
CVE-2022-47389
An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution.
CVSS Score
8.8
EPSS Score
0.019
Published
2023-05-15
CVE-2022-47390
An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution.
CVSS Score
8.8
EPSS Score
0.019
Published
2023-05-15
CVE-2022-47378
Multiple CODESYS products in multiple versions are prone to a improper input validation vulnerability. An authenticated remote attacker may craft specific requests that use the vulnerability leading to a denial-of-service condition.
CVSS Score
6.5
EPSS Score
0.003
Published
2023-05-15
CVE-2022-47379
An authenticated, remote attacker may use a out-of-bounds write vulnerability in multiple CODESYS products in multiple versions to write data into memory which can lead to a denial-of-service condition, memory overwriting, or remote code execution.
CVSS Score
8.8
EPSS Score
0.023
Published
2023-05-15
CVE-2022-47380
An authenticated remote attacker may use a stack based  out-of-bounds write vulnerability in multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution.
CVSS Score
8.8
EPSS Score
0.019
Published
2023-05-15


Products
Pricing
Contact Us

Shodan ® - All rights reserved