Vulnerabilities > Codesys > Gateway > 3.5.16.70

DATE CVE VULNERABILITY TITLE RISK
2022-04-07 CVE-2022-22513 Unspecified vulnerability in Codesys products
An authenticated remote attacker can cause a null pointer dereference in the CmpSettings component of the affected CODESYS products which leads to a crash.
network
low complexity
codesys
6.5
2022-04-07 CVE-2022-22514 Unspecified vulnerability in Codesys products
An authenticated, remote attacker can gain access to a dereferenced pointer contained in a request.
network
low complexity
codesys
7.1
2022-04-07 CVE-2022-22517 Use of Insufficiently Random Values vulnerability in Codesys products
An unauthenticated, remote attacker can disrupt existing communication channels between CODESYS products by guessing a valid channel ID and injecting packets.
network
low complexity
codesys CWE-330
7.5
2021-08-04 CVE-2021-36764 NULL Pointer Dereference vulnerability in Codesys Gateway
In CODESYS Gateway V3 before 3.5.17.10, there is a NULL Pointer Dereference.
network
low complexity
codesys CWE-476
7.5
2021-05-03 CVE-2021-29242 Improper Input Validation vulnerability in Codesys products
CODESYS Control Runtime system before 3.5.17.0 has improper input validation.
network
low complexity
codesys CWE-20
7.3