Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/02/06 12:9 a.m.15 views

CVE-2022-47381

An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution...

8.8CVSS7.3AI score0.01334EPSS
Exploits0
ICS
ICS
added 2024/01/30 7:0 a.m.76 views

Rockwell Automation LP30/40/50 and BM40 Operator Interface

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 8.8 ATTENTION : Exploitable remotely/low attack complexity Vendor : Rockwell Automation Equipment : LP30, LP40, LP50, and BM40 Operator Panels Vulnerability : Improper Validation of Consistency within Input, Out-of-bounds Write, Stack-based Buffer Overflow,...

8.8CVSS8.5AI score0.0199EPSS
Exploits0References8
The Hacker News
The Hacker News
added 2023/08/11 5:20 a.m.66 views

16 New CODESYS SDK Flaws Expose OT Environments to Remote Attacks

A set of 16 high-severity security flaws have been disclosed in the CODESYS V3 software development kit SDK that could result in remote code execution and denial-of-service under specific conditions, posing risks to operational technology OT environments. The flaws, tracked from CVE-2022-47378...

8.8CVSS8.8AI score0.0199EPSS
Exploits0
NVD
NVD
added 2023/05/15 10:15 a.m.20 views

CVE-2022-47381

An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution...

8.8CVSS8.9AI score0.01334EPSS
Exploits0References1
CVE
CVE
added 2023/05/15 9:41 a.m.63 views

CVE-2022-47381

CVE-2022-47381 affects the CMPapp component in CODESYS V3 (stack-based buffer overflow). After authentication, crafted requests can cause the CMPapp to write to memory/stack, enabling DoS, memory overwriting, or remote code execution. Rockwell/CODESYS mitigations: upgrade to CODESYS 3.5.19.2 or n...

8.8CVSS8.9AI score0.01334EPSS
Exploits0References1Affected Software17
Cvelist
Cvelist
added 2023/05/15 9:41 a.m.21 views

CVE-2022-47381 CODESYS: Multiple products prone to stack based out-of-bounds write

An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution...

8.8CVSS9.2AI score0.01334EPSS
Exploits0References1
Rows per page
Query Builder