4 matches found
CVE-2021-34604
CVE-2021-34604 has been withdrawn and is a duplicate of CVE-2022-22514. The connected documents provide concrete detail only for CVE-2022-22514: an authenticated remote attacker can trigger a dereferenced pointer in CODESYS components (notably CmpTraceMgr) via a crafted request, enabling memory o...
CVE-2022-22514
creationtimestamp| type| source ---|---|--- 2022-04-07 22:36:32+00:00| seen| https://t.me/cibsecurity/40308 2026-03-17 12:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-076-01...
CVE-2022-22514
CVE-2022-22514 is a CODESYS vulnerability where an authenticated, remote attacker can access a dereferenced pointer in a request, enabling local memory overwrite in CmpTraceMgr and potentially causing a crash. The primary description notes lack of read/write control over values and potential cras...
CVE-2022-22514 Untrusted Pointer Dereference in multiple CODESYS products can lead to a DoS.
An authenticated, remote attacker can gain access to a dereferenced pointer contained in a request. The accesses can subsequently lead to local overwriting of memory in the CmpTraceMgr, whereby the attacker can neither gain the values read internally nor control the values to be written. If inval...