3S CODESYS Gateway-Server before 2.3.9.27 allows remote attackers to execute arbitrary code via vectors that trigger an out-of-bounds memory access.
oryginał ENCVSS Vector
AV:N/AC:L/Au:N/C:C/I:C/A:C3s Software Codesys Gateway Server
APP3S-Software2.3.5.12.3.5.22.3.5.32.3.6.02.3.7.02.3.8.02.3.8.12.3.8.22.3.92.3.9.12.3.9.182.3.9.22.3.9.32.3.9.42.3.9.5+ 1 więcej
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
RCEMemory
CWE
Powiązane podatności
CVE-2013-2781HIGH10.0ten sam produkt
Use-after-free vulnerability in the server application in 3S CODESYS Gateway 2.3.9.27 allows remote attackers ...
CVE-2012-4704HIGH10.0ten sam produkt
Array index error in 3S CODESYS Gateway-Server before 2.3.9.27 allows remote attackers to execute arbitrary co...
CVE-2012-4705HIGH10.0ten sam produkt
Directory traversal vulnerability in 3S CODESYS Gateway-Server before 2.3.9.27 allows remote attackers to exec...
CVE-2012-4706HIGH7.8ten sam produkt
Integer signedness error in 3S CODESYS Gateway-Server before 2.3.9.27 allows remote attackers to cause a denia...
CVE-2012-4708HIGH10.0ten sam produkt
Stack-based buffer overflow in 3S CODESYS Gateway-Server before 2.3.9.27 allows remote attackers to execute ar...