Lucene search
K

3 matches found

BDU FSTEC
BDU FSTEC
added 2023/05/22 12:0 a.m.9 views

The vulnerabilities of the ObjectManager plugin and ProfileInformation.ProfileData components of the PLACODESYS Development System application programming interface allow attackers to execute arbitrary commands.

The vulnerability of the ObjectManager plugin and ProfileInformation.FileData components of the PLCODESYS Development System application programming interface is related to deficiencies in the deserialization mechanism. Exploiting this vulnerability can allow an attacker to execute arbitrary...

7.8CVSS7.8AI score0.01671EPSS
Exploits1References6Affected Software3
Positive Technologies
Positive Technologies
added 2021/08/25 12:0 a.m.6 views

PT-2021-7843 · 3S Smart Software Solutions · Codesys Development System

Name of the Vulnerable Software and Affected Versions: CODESYS Development System versions 3.5.16 through 3.5.17 Description: The issue is related to an unsafe deserialization vulnerability in the Engine.plugin ProfileInformation ProfileData functionality. This vulnerability can be exploited by...

10CVSS8.2AI score0.01769EPSS
Exploits1References9
Talos
Talos
added 2021/07/26 12:0 a.m.59 views

CODESYS Development System Engine.plugin ProfileInformation ProfileData Unsafe Deserialization vulnerability

Summary An unsafe deserialization vulnerability exists in the Engine.plugin ProfileInformation ProfileData functionality of CODESYS GmbH CODESYS Development System 3.5.16 and 3.5.17. A specially crafted file can lead to arbitrary command execution. An attacker can provide a malicious file to...

8.8CVSS8AI score0.01769EPSS
Exploits1
Rows per page
Query Builder