Vulnerabilities > Codesys > Control Runtime System Toolkit > 3.5.15.20
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-08-03 | CVE-2021-36763 | Files or Directories Accessible to External Parties vulnerability in Codesys products In CODESYS V3 web server before 3.5.17.10, files or directories are accessible to External Parties. | 5.0 |
| 2021-05-03 | CVE-2021-29241 | NULL Pointer Dereference vulnerability in Codesys products CODESYS Gateway 3 before 3.5.16.70 has a NULL pointer dereference that may result in a denial of service (DoS). | 5.0 |
| 2021-05-03 | CVE-2021-29242 | Improper Input Validation vulnerability in Codesys products CODESYS Control Runtime system before 3.5.17.0 has improper input validation. | 7.5 |
| 2020-07-22 | CVE-2020-15806 | Allocation of Resources Without Limits or Throttling vulnerability in Codesys products CODESYS Control runtime system before 3.5.16.10 allows Uncontrolled Memory Allocation. | 5.0 |
| 2020-05-14 | CVE-2020-12068 | Improper Privilege Management vulnerability in Codesys products An issue was discovered in CODESYS Development System before 3.5.16.0. | 6.4 |
| 2020-01-24 | CVE-2020-7052 | Resource Exhaustion vulnerability in Codesys products CODESYS Control V3, Gateway V3, and HMI V3 before 3.5.15.30 allow uncontrolled memory allocation which can result in a remote denial of service condition. | 4.0 |