750-823 Firmware Security Vulnerabilities and Issues — 750-823 Firmware CVE List

Lucene search

Wago750-823 Firmware

6 matches found

CVE•added 2021/10/26 10:15 a.m.•51 views

CVE-2021-34585

In the CODESYS V2 web server prior to V1.1.9.22 crafted web server requests can trigger a parser error. Since the parser result is not checked under all conditions, a pointer dereference with an invalid address can occur. This leads to a denial of service situation.

7.5CVSS7.4AI score0.00468EPSS

CVE•added 2021/10/26 10:15 a.m.•46 views

CVE-2021-34584

Crafted web server requests can be utilised to read partial stack or heap memory or may trigger a denial-of- service condition due to a crash in the CODESYS V2 web server prior to V1.1.9.22.

9.1CVSS9AI score0.00607EPSS

CVE•added 2021/10/26 10:15 a.m.•40 views

CVE-2021-34595

A crafted request with invalid offsets may cause an out-of-bounds read or write access in CODESYS V2 Runtime Toolkit 32 Bit full and PLCWinNT prior to versions V2.4.7.56, resulting in a denial-of-service condition or local memory overwrite.

8.1CVSS7.9AI score0.00473EPSS

CVE•added 2021/10/26 10:15 a.m.•38 views

CVE-2021-34583

Crafted web server requests may cause a heap-based buffer overflow and could therefore trigger a denial-of- service condition due to a crash in the CODESYS V2 web server prior to V1.1.9.22.

7.5CVSS7.7AI score0.03822EPSS

CVE•added 2021/10/26 10:15 a.m.•38 views

CVE-2021-34596

A crafted request may cause a read access to an uninitialized pointer in CODESYS V2 Runtime Toolkit 32 Bit full and PLCWinNT prior to versions V2.4.7.56, resulting in a denial-of-service condition.

6.5CVSS6.2AI score0.00236EPSS

CVE•added 2021/10/26 10:15 a.m.•36 views

CVE-2021-34586

In the CODESYS V2 web server prior to V1.1.9.22 crafted web server requests may cause a Null pointer dereference in the CODESYS web server and may result in a denial-of-service condition.

7.5CVSS7.5AI score0.03292EPSS