Vulnerabilities > CVE-2022-31806 - Unspecified vulnerability in Codesys Plcwinnt and Runtime Toolkit

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

codesys

NVD

Published: 2022-06-24

Updated: 2024-11-21

Summary

In CODESYS V2 PLCWinNT and Runtime Toolkit 32 in versions prior to V2.4.7.57 password protection is not enabled by default and there is no information or prompt to enable password protection at login in case no password is set at the controller.

Vulnerable Configurations

Part	Description	Count
Application	Codesys Codesys Runtime Toolkit - Codesys Runtime Toolkit 2.4.7.54 Codesys Plcwinnt - Codesys Plcwinnt 2.4.7.54	4

References

https://customers.codesys.com/index.php?eID=dumpFile&t=f&f=17140&token=6aa2c5c4a8b83b8b09936fefed5b0b11f9d2cc6c&download=
https://customers.codesys.com/index.php?eID=dumpFile&t=f&f=17140&token=6aa2c5c4a8b83b8b09936fefed5b0b11f9d2cc6c&download=

Summary

Vulnerable Configurations

Related news

References