3s-Software CODESYS Runtime System

CPE Details

3s-Software CODESYS Runtime System
3s-software
codesys_runtime_system
-
2014-04-25
11h47 +00:00
2014-04-29
18h23 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:3s-software:codesys_runtime_system:-:*:*:*:*:*:*:*

Informations

Vendor

3s-software

Product

codesys_runtime_system

Version

-

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2018-5440 2018-02-15 09h00 +00:00 A Stack-based Buffer Overflow issue was discovered in 3S-Smart CODESYS Web Server. Specifically: all Microsoft Windows (also WinCE) based CODESYS web servers running stand-alone Version 2.3, or as part of the CODESYS runtime system running prior to Version V1.1.9.19. A crafted request may cause a buffer overflow and could therefore execute arbitrary code on the web server or lead to a denial-of-service condition due to a crash in the web server.
9.8
Critical
CVE-2015-6482 2015-10-18 17h00 +00:00 Runtime Toolkit before 2.4.7.48 in 3S-Smart CODESYS before 2.3.9.48 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted request.
5
CVE-2014-0760 2014-04-24 23h00 +00:00 The Festo CECX-X-C1 Modular Master Controller with CoDeSys and CECX-X-M1 Modular Controller with CoDeSys and SoftMotion provide an undocumented access method involving the FTP protocol, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via unspecified vectors.
9.3
CVE-2014-0769 2014-04-24 23h00 +00:00 The Festo CECX-X-C1 Modular Master Controller with CoDeSys and CECX-X-M1 Modular Controller with CoDeSys and SoftMotion do not require authentication for connections to certain TCP ports, which allows remote attackers to (1) modify the configuration via a request to the debug service on port 4000 or (2) delete log entries via a request to the log service on port 4001.
9.3