Vulnerabilities > Codesys > Plcwinnt > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-06-24 | CVE-2022-32136 | Access of Uninitialized Pointer vulnerability in Codesys Plcwinnt and Runtime Toolkit In multiple CODESYS products, a low privileged remote attacker may craft a request that cause a read access to an uninitialized pointer, resulting in a denial-of-service. | 6.5 |
| 2022-06-24 | CVE-2022-32139 | Out-of-bounds Read vulnerability in Codesys Plcwinnt and Runtime Toolkit In multiple CODESYS products, a low privileged remote attacker may craft a request, which cause an out-of-bounds read, resulting in a denial-of-service condition. | 6.5 |
| 2022-06-24 | CVE-2022-32140 | Classic Buffer Overflow vulnerability in Codesys Plcwinnt and Runtime Toolkit Multiple CODESYS products are affected to a buffer overflow.A low privileged remote attacker may craft a request, which can cause a buffer copy without checking the size of the service, resulting in a denial-of-service condition. | 6.5 |
| 2022-06-24 | CVE-2022-32141 | Out-of-bounds Read vulnerability in Codesys Plcwinnt and Runtime Toolkit Multiple CODESYS Products are prone to a buffer over read. | 6.5 |
| 2021-10-26 | CVE-2021-34596 | Access of Uninitialized Pointer vulnerability in Codesys Plcwinnt and Runtime Toolkit A crafted request may cause a read access to an uninitialized pointer in CODESYS V2 Runtime Toolkit 32 Bit full and PLCWinNT prior to versions V2.4.7.56, resulting in a denial-of-service condition. | 6.5 |
| 2019-12-20 | CVE-2019-19789 | NULL Pointer Dereference vulnerability in Codesys Plcwinnt, Runtime Toolkit and SP Realtime NT 3S-Smart CODESYS SP Realtime NT before V2.3.7.28, CODESYS Runtime Toolkit 32 bit full before V2.4.7.54, and CODESYS PLCWinNT before V2.4.7.54 allow a NULL pointer dereference. | 6.5 |