Lucene search
+L

6 matches found

RedhatCVE
RedhatCVE
added 2025/02/06 12:5 a.m.10 views

CVE-2022-47380

An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution...

8.8CVSS7.3AI score0.01334EPSS
Exploits0
ICS
ICS
added 2024/01/30 7:0 a.m.78 views

Rockwell Automation LP30/40/50 and BM40 Operator Interface

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 8.8 ATTENTION : Exploitable remotely/low attack complexity Vendor : Rockwell Automation Equipment : LP30, LP40, LP50, and BM40 Operator Panels Vulnerability : Improper Validation of Consistency within Input, Out-of-bounds Write, Stack-based Buffer Overflow,...

8.8CVSS8.5AI score0.0199EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2023/09/18 12:0 a.m.29 views

Rockwell Automation LP30/40/50 and BM40 Operator Interface Stack-Based Buffer Overflow (CVE-2022-47380)

An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in the CMPapp Component of multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution. Wago PFC20...

8.8CVSS7.6AI score0.01334EPSS
Exploits0References4
The Hacker News
The Hacker News
added 2023/08/11 5:20 a.m.68 views

16 New CODESYS SDK Flaws Expose OT Environments to Remote Attacks

A set of 16 high-severity security flaws have been disclosed in the CODESYS V3 software development kit SDK that could result in remote code execution and denial-of-service under specific conditions, posing risks to operational technology OT environments. The flaws, tracked from CVE-2022-47378...

8.8CVSS8.8AI score0.0199EPSS
Exploits0
CVE
CVE
added 2023/05/15 9:40 a.m.59 views

CVE-2022-47380

CVE-2022-47380 describes a stack-based out-of-bounds write in CMPapp (and related CMP components) within CODESYS V3 across multiple versions. After authentication, crafted requests can write to stack memory, enabling denial-of-service, memory overwriting, or remote code execution. Connected sourc...

8.8CVSS8.9AI score0.01334EPSS
Exploits0References1Affected Software17
Cvelist
Cvelist
added 2023/05/15 9:40 a.m.28 views

CVE-2022-47380 CODESYS: Multiple products prone to out-of-bounds write

An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution...

8.8CVSS9.2AI score0.01334EPSS
Exploits0References1
Rows per page
Query Builder