Development System@3.5.17.0 Security Vulnerabilities and Issues — Development System@3.5.17.0 CVE List

Lucene search

CodesysDevelopment System3.5.17.0

4 matches found

CVE•added 2021/08/02 9:15 p.m.•73 views

CVE-2021-21864

A unsafe deserialization vulnerability exists in the ComponentModel ComponentManager.StartupCultureSettings functionality of CODESYS GmbH CODESYS Development System 3.5.16 and 3.5.17. A specially crafted file can lead to arbitrary command execution. An attacker can provide a malicious file to trigg...

7.8CVSS7.7AI score0.00158EPSS

CVE•added 2021/08/02 9:15 p.m.•54 views

CVE-2021-21865

A unsafe deserialization vulnerability exists in the PackageManagement.plugin ExtensionMethods.Clone() functionality of CODESYS GmbH CODESYS Development System 3.5.16. A specially crafted file can lead to arbitrary command execution. An attacker can provide a malicious file to trigger this vulnerab...

8.8CVSS7.7AI score0.00116EPSS

CVE•added 2021/08/02 9:15 p.m.•48 views

CVE-2021-21866

A unsafe deserialization vulnerability exists in the ObjectManager.plugin ProfileInformation.ProfileData functionality of CODESYS GmbH CODESYS Development System 3.5.16 and 3.5.17. A specially crafted file can lead to arbitrary command execution. An attacker can provide a malicious file to trigger ...

8.8CVSS7.7AI score0.00157EPSS

CVE•added 2021/08/05 8:15 p.m.•36 views

CVE-2021-21863

A unsafe deserialization vulnerability exists in the ComponentModel Profile.FromFile() functionality of CODESYS GmbH CODESYS Development System 3.5.16 and 3.5.17. A specially crafted file can lead to arbitrary command execution. An attacker can provide a malicious file to trigger this vulnerability...

8.8CVSS7.7AI score0.00111EPSS