EUVD-2022-50158

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

Unauthorized remote attacker can exploit improper input validation in CODESYS products causing denial of service

Reporter	Title	Published	Views	Family All 14
BDU FSTEC	The vulnerability of CODESYS software products, related to insufficient validation of input data, allows a perpetrator to trigger a service failure.	3 Aug 202300:00	–	bdu_fstec
Circl	CVE-2022-47391	15 May 202314:29	–	circl
CNNVD	3s-smart Software Solutions CODESYS 输入验证错误漏洞	15 May 202300:00	–	cnnvd
CVE	CVE-2022-47391	15 May 202309:59	–	cve
Cvelist	CVE-2022-47391 CODESYS: Multiple products prone to Improper Input Validation	15 May 202309:59	–	cvelist
Microsoft Malware Protection	Multiple high severity vulnerabilities in CODESYS V3 SDK could lead to RCE or DoS	11 Aug 202300:00	–	mmpc
Microsoft Secure	Multiple high severity vulnerabilities in CODESYS V3 SDK could lead to RCE or DoS	11 Aug 202300:00	–	mssecure
NVD	CVE-2022-47391	15 May 202310:15	–	nvd
Prion	Input validation	15 May 202310:15	–	prion
Positive Technologies	PT-2022-6765 · 3S Smart Software Solutions · Codesys	14 Dec 202200:00	–	ptsecurity

[
  {
    "enisaIdVendor": [
      {
        "id": "1e2e5017-0d50-394b-954f-752ff1c24638",
        "vendor": {
          "name": "CODESYS"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "0cacb509-70ed-35b3-8312-f04e83a2d363",
        "product": {
          "name": "CODESYS Control Win (SL)"
        },
        "product_version": "V0.0.0.0 <V3.5.19.0"
      },
      {
        "id": "1f2fc1dc-d543-3113-b511-c42402ef7217",
        "product": {
          "name": "CODESYS Safety SIL2 PSP"
        },
        "product_version": "V0.0.0.0 <V3.5.19.0"
      },
      {
        "id": "40439b1f-a7a6-3153-8ca7-1b2b6812e55f",
        "product": {
          "name": "CODESYS Control for PFC200 SL"
        },
        "product_version": "V0.0.0.0 <V4.8.0.0"
      },
      {
        "id": "41405058-f039-38c7-9392-1ec4d7f68fad",
        "product": {
          "name": "CODESYS Control RTE (SL)"
        },
        "product_version": "V0.0.0.0 <V3.5.19.0"
      },
      {
        "id": "45e96eae-1b51-3d40-8e4f-03f0a504c288",
        "product": {
          "name": "CODESYS Control RTE (for Beckhoff CX) SL"
        },
        "product_version": "V0.0.0.0 <V3.5.19.0"
      },
      {
        "id": "510e1767-dfd9-38a1-9f1f-b427e2d0278c",
        "product": {
          "name": "CODESYS Control for IOT2000 SL"
        },
        "product_version": "V0.0.0.0 <V4.8.0.0"
      },
      {
        "id": "5e04cf9f-eed0-3e9e-8c59-8c5acd2ca1e5",
        "product": {
          "name": "CODESYS Development System V3"
        },
        "product_version": "V0.0.0.0 <V3.5.19.0"
      },
      {
        "id": "8872276d-e168-3e2f-a0fd-7233bd557456",
        "product": {
          "name": "CODESYS Control for emPC-A/iMX6 SL"
        },
        "product_version": "V0.0.0.0 <V4.8.0.0"
      },
      {
        "id": "992b84c4-93b7-3ec5-a057-0486200ba766",
        "product": {
          "name": "CODESYS Edge Gateway for Windows"
        },
        "product_version": "V0.0.0.0 <V3.5.19.0"
      },
      {
        "id": "a1f6bb9c-eb3c-3b8c-b8ec-3d2e39b019d7",
        "product": {
          "name": "CODESYS Control for PFC100 SL"
        },
        "product_version": "V0.0.0.0 <V4.8.0.0"
      },
      {
        "id": "b20a4ac9-f0c7-321d-a5b5-278752ea174b",
        "product": {
          "name": "CODESYS Control for Raspberry Pi SL"
        },
        "product_version": "V0.0.0.0 <V4.8.0.0"
      },
      {
        "id": "c1719640-4cdc-3813-a573-c3f34cb4adaf",
        "product": {
          "name": "CODESYS Gateway"
        },
        "product_version": "V0.0.0.0 <V3.5.19.0"
      },
      {
        "id": "c3a7c67e-e24d-3051-99e2-f384e302c8f7",
        "product": {
          "name": "CODESYS Control for Linux SL"
        },
        "product_version": "V0.0.0.0 <V4.8.0.0"
      },
      {
        "id": "ce70567f-77e6-3fad-b8a0-cb4319854c21",
        "product": {
          "name": "CODESYS Control for PLCnext SL"
        },
        "product_version": "V0.0.0.0 <V4.8.0.0"
      },
      {
        "id": "d8202666-76f1-3835-8752-2ee13da543b9",
        "product": {
          "name": "CODESYS Control for WAGO Touch Panels 600 SL"
        },
        "product_version": "V0.0.0.0 <V4.8.0.0"
      },
      {
        "id": "de9604e0-3083-367d-afb4-f33c32a5924c",
        "product": {
          "name": "CODESYS Control Runtime System Toolkit"
        },
        "product_version": "V0.0.0.0 <V3.5.19.0"
      },
      {
        "id": "dedc787f-6dad-389e-9bff-df8b0264e4ca",
        "product": {
          "name": "CODESYS HMI (SL)"
        },
        "product_version": "V0.0.0.0 <V3.5.19.0"
      },
      {
        "id": "e33e5656-5839-3979-93fd-02a8aa18bedf",
        "product": {
          "name": "CODESYS Edge Gateway for Linux"
        },
        "product_version": "V0.0.0.0 <V4.8.0.0"
      },
      {
        "id": "f7f935e2-4082-37a2-b428-641993e3fac7",
        "product": {
          "name": "CODESYS Control for BeagleBone SL"
        },
        "product_version": "V0.0.0.0 <V4.8.0.0"
      },
      {
        "id": "fbfa8788-d8ce-3f51-8a39-7571581d5b96",
        "product": {
          "name": "CODESYS Safety SIL2 Runtime Toolkit"
        },
        "product_version": "V0.0.0.0 <V3.5.19.0"
      }
    ]
  }
]

Source	Link
customers	www.customers.codesys.com/index.php

03 Oct 2025 20:07Current

8.3High risk

Vulners AI Score8.3

CVSS 3.17.5

EPSS0.01871

SSVC