Lucene search
IcscertCVE-2012-4707HistoryFeb 24, 2013 - 11:48 a.m.
CVE-2012-4707
2013-02-2411:48:21
CWE-94
icscert
web.nvd.nist.gov
118
cve-2012-4707
3s codesys
gateway-server
remote attackers
arbitrary code execution
memory access
nvd
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
7.8
Confidence
Low
EPSS
0.048
Percentile
92.8%
3S CODESYS Gateway-Server before 2.3.9.27 allows remote attackers to execute arbitrary code via vectors that trigger an out-of-bounds memory access.
Affected configurations
Node
3s-softwarecodesys_gateway-serverRange≤2.3.9.19
OR3s-softwarecodesys_gateway-serverMatch2.3.5.1
OR3s-softwarecodesys_gateway-serverMatch2.3.5.2
OR3s-softwarecodesys_gateway-serverMatch2.3.5.3
OR3s-softwarecodesys_gateway-serverMatch2.3.6.0
OR3s-softwarecodesys_gateway-serverMatch2.3.7.0
OR3s-softwarecodesys_gateway-serverMatch2.3.8.0
OR3s-softwarecodesys_gateway-serverMatch2.3.8.1
OR3s-softwarecodesys_gateway-serverMatch2.3.8.2
OR3s-softwarecodesys_gateway-serverMatch2.3.9
OR3s-softwarecodesys_gateway-serverMatch2.3.9.1
OR3s-softwarecodesys_gateway-serverMatch2.3.9.2
OR3s-softwarecodesys_gateway-serverMatch2.3.9.3
OR3s-softwarecodesys_gateway-serverMatch2.3.9.4
OR3s-softwarecodesys_gateway-serverMatch2.3.9.5
OR3s-softwarecodesys_gateway-serverMatch2.3.9.18
| Vendor | Product | Version | CPE |
|---|---|---|---|
| 3s-software | codesys_gateway-server | * | cpe:2.3:a:3s-software:codesys_gateway-server:*:*:*:*:*:*:*:* |
| 3s-software | codesys_gateway-server | 2.3.5.1 | cpe:2.3:a:3s-software:codesys_gateway-server:2.3.5.1:*:*:*:*:*:*:* |
| 3s-software | codesys_gateway-server | 2.3.5.2 | cpe:2.3:a:3s-software:codesys_gateway-server:2.3.5.2:*:*:*:*:*:*:* |
| 3s-software | codesys_gateway-server | 2.3.5.3 | cpe:2.3:a:3s-software:codesys_gateway-server:2.3.5.3:*:*:*:*:*:*:* |
| 3s-software | codesys_gateway-server | 2.3.6.0 | cpe:2.3:a:3s-software:codesys_gateway-server:2.3.6.0:*:*:*:*:*:*:* |
| 3s-software | codesys_gateway-server | 2.3.7.0 | cpe:2.3:a:3s-software:codesys_gateway-server:2.3.7.0:*:*:*:*:*:*:* |
| 3s-software | codesys_gateway-server | 2.3.8.0 | cpe:2.3:a:3s-software:codesys_gateway-server:2.3.8.0:*:*:*:*:*:*:* |
| 3s-software | codesys_gateway-server | 2.3.8.1 | cpe:2.3:a:3s-software:codesys_gateway-server:2.3.8.1:*:*:*:*:*:*:* |
| 3s-software | codesys_gateway-server | 2.3.8.2 | cpe:2.3:a:3s-software:codesys_gateway-server:2.3.8.2:*:*:*:*:*:*:* |
| 3s-software | codesys_gateway-server | 2.3.9 | cpe:2.3:a:3s-software:codesys_gateway-server:2.3.9:*:*:*:*:*:*:* |
Related
nvd
nvd
CVE-2012-4707
2013-02-24 11:48:21
prion
prion
Out-of-bounds
2013-02-24 11:48:00
checkpoint_advisories
checkpoint_advisories
cvelist
cvelist
CVE-2012-4707
2013-02-24 11:00:00
nessus
nessus
CoDeSys Gateway Service < 2.3.9.27 Multiple Vulnerabilities
2013-03-11 00:00:00
ics
ics
3S CODESYS Gateway-Server Vulnerabilities (Update A)
2018-09-06 12:00:00
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
7.8
Confidence
Low
EPSS
0.048
Percentile
92.8%
Related for CVE-2012-4707