CVEInsight.

Free vulnerability intelligence for developers, security teams, and researchers. Data sourced from public databases for informational purposes only.

Explore

Legal

CVE data sourced from NVD / NIST & public disclosures.

codesys

simulation_runtime

6 known vulnerabilities · sorted by CVSS score

CVE-2018-25048

HIGH8.8

The CODESYS runtime system in multiple versions allows an remote low privileged attacker to use a path traversal vulnerability to access and modify all system files as well as DoS the device.

codesys / control_for_beaglebone+15

Network

Published Mar 23, 2023

CVE-2019-9008

HIGH8.8

An issue was discovered in 3S-Smart CODESYS V3 through 3.5.12.30. A user with low privileges can take full control over the runtime.

codesys / control_for_beaglebone+9

Network

Published Sep 17, 2019

CVE-2020-15806

HIGH7.5

CODESYS Control runtime system before 3.5.16.10 allows Uncontrolled Memory Allocation.

codesys / control_for_beaglebone+16

Network

Published Jul 22, 2020

CVE-2019-9009

HIGH7.5

An issue was discovered in 3S-Smart CODESYS before 3.5.15.0 . Crafted network packets cause the Control Runtime to crash.

codesys / control_for_beaglebone+13

Network

Published Sep 17, 2019

CVE-2021-29242

HIGH7.3

CODESYS Control Runtime system before 3.5.17.0 has improper input validation. Attackers can send crafted communication packets to change the router's addressing scheme and may re-route, add, remove or change low level communication packages.

codesys / control_for_beaglebone_sl+23

Network

Published May 3, 2021

CVE-2020-7052

MEDIUM6.5

CODESYS Control V3, Gateway V3, and HMI V3 before 3.5.15.30 allow uncontrolled memory allocation which can result in a remote denial of service condition.

codesys / control_for_beaglebone+15

Network

Published Jan 24, 2020