CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:N/I:N/A:P
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
AI Score
Confidence
High
EPSS
Percentile
50.4%
CODESYS Control V3, Gateway V3, and HMI V3 before 3.5.15.30 allow uncontrolled memory allocation which can result in a remote denial of service condition.
Vendor | Product | Version | CPE |
---|---|---|---|
codesys | control_for_beaglebone | * | cpe:2.3:a:codesys:control_for_beaglebone:*:*:*:*:*:*:*:* |
codesys | control_for_empc-a\/imx6 | * | cpe:2.3:a:codesys:control_for_empc-a\/imx6:*:*:*:*:*:*:*:* |
codesys | control_for_iot2000 | * | cpe:2.3:a:codesys:control_for_iot2000:*:*:*:*:*:*:*:* |
codesys | control_for_linux | * | cpe:2.3:a:codesys:control_for_linux:*:*:*:*:*:*:*:* |
codesys | control_for_pfc100 | * | cpe:2.3:a:codesys:control_for_pfc100:*:*:*:*:*:*:*:* |
codesys | control_for_pfc200 | * | cpe:2.3:a:codesys:control_for_pfc200:*:*:*:*:*:*:*:* |
codesys | control_for_plcnext | * | cpe:2.3:a:codesys:control_for_plcnext:*:*:*:*:*:*:*:* |
codesys | control_for_raspberry_pi | * | cpe:2.3:a:codesys:control_for_raspberry_pi:*:*:*:*:*:*:*:* |
codesys | control_rte | * | cpe:2.3:a:codesys:control_rte:*:*:*:*:*:*:*:* |
codesys | control_rte | * | cpe:2.3:a:codesys:control_rte:*:*:*:*:*:beckhoff_cx:*:* |
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:N/I:N/A:P
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
AI Score
Confidence
High
EPSS
Percentile
50.4%