Vulnerabilities > 3S Software > Codesys Runtime System > 2.3.9.36
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2015-10-18 | CVE-2015-6482 | Remote Denial of Service vulnerability in CODESYS Runtime Toolkit Runtime Toolkit before 2.4.7.48 in 3S-Smart CODESYS before 2.3.9.48 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted request. | 5.0 |
| 2013-01-21 | CVE-2012-6069 | Path Traversal vulnerability in 3S-Software Codesys Runtime System Directory traversal vulnerability in the Runtime Toolkit in CODESYS Runtime System 2.3.x and 2.4.x allows remote attackers to read, overwrite, or create arbitrary files via a .. | 10.0 |
| 2013-01-21 | CVE-2012-6068 | Permissions, Privileges, and Access Controls vulnerability in 3S-Software Codesys Runtime System The Runtime Toolkit in CODESYS Runtime System 2.3.x and 2.4.x does not require authentication, which allows remote attackers to (1) execute commands via the command-line interface in the TCP listener service or (2) transfer files via requests to the TCP listener service. | 10.0 |