Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
3s-softwareCodesys Runtime System2.4.0

2 matches found

CVE
CVEadded 2013/01/21 9:55 p.m.87 views

CVE-2012-6068

The Runtime Toolkit in CODESYS Runtime System 2.3.x and 2.4.x does not require authentication, which allows remote attackers to execute commands via the command-line interface in the TCP listener service or transfer files via requests to the TCP listener service.

10CVSS7.1AI score0.04384EPSS
CVE
CVEadded 2013/01/21 9:55 p.m.57 views

CVE-2012-6069

The CoDeSys Runtime Toolkit’s file transfer functionality does notperform input validation, which allows an attacker to access files anddirectories outside the intended scope. This may allow an attacker toupload and download any file on the device. This could allow theattacker to affect the availab...

10CVSS6.3AI score0.02234EPSS