Vulnerabilities > 3S Software > Codesys Runtime System > 2.4.0

DATE CVE VULNERABILITY TITLE RISK
2013-01-21 CVE-2012-6069 Path Traversal vulnerability in 3S-Software Codesys Runtime System
Directory traversal vulnerability in the Runtime Toolkit in CODESYS Runtime System 2.3.x and 2.4.x allows remote attackers to read, overwrite, or create arbitrary files via a ..
network
low complexity
3s-software CWE-22
critical
 10.0
10
2013-01-21 CVE-2012-6068 Permissions, Privileges, and Access Controls vulnerability in 3S-Software Codesys Runtime System
The Runtime Toolkit in CODESYS Runtime System 2.3.x and 2.4.x does not require authentication, which allows remote attackers to (1) execute commands via the command-line interface in the TCP listener service or (2) transfer files via requests to the TCP listener service.
network
low complexity
3s-software CWE-264
critical
 10.0
10