Vulnerabilities > Codesys > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-03-26 | CVE-2020-10245 | Out-of-bounds Write vulnerability in Codesys products CODESYS V3 web server before 3.5.15.40, as used in CODESYS Control runtime systems, has a buffer overflow. | 9.8 |
| 2019-11-20 | CVE-2019-18858 | Classic Buffer Overflow vulnerability in Codesys products CODESYS 3 web server before 3.5.15.20, as distributed with CODESYS Control runtime systems, has a Buffer Overflow. | 9.8 |
| 2019-10-25 | CVE-2019-16265 | Out-of-bounds Write vulnerability in Codesys and ENI Server CODESYS V2.3 ENI server up to V3.2.2.24 has a Buffer Overflow. | 9.8 |
| 2019-09-13 | CVE-2019-13548 | Out-of-bounds Write vulnerability in Codesys products CODESYS V3 web server, all versions prior to 3.5.14.10, allows an attacker to send specially crafted http or https requests which could cause a stack overflow and create a denial-of-service condition or allow remote code execution. | 9.8 |
| 2019-08-15 | CVE-2019-9010 | Unspecified vulnerability in Codesys products An issue was discovered in 3S-Smart CODESYS V3 products. | 9.8 |
| 2019-01-29 | CVE-2018-10612 | Incorrect Permission Assignment for Critical Resource vulnerability in Codesys products In 3S-Smart Software Solutions GmbH CODESYS Control V3 products prior to version 3.5.14.0, user access management and communication encryption is not enabled by default, which could allow an attacker access to the device and sensitive information, including user credentials. | 9.8 |
| 2017-05-19 | CVE-2017-6027 | Unrestricted Upload of File with Dangerous Type vulnerability in Codesys web Server 2.3 An Arbitrary File Upload issue was discovered in 3S-Smart Software Solutions GmbH CODESYS Web Server. | 9.8 |
| 2017-05-19 | CVE-2017-6025 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Codesys web Server 2.3 A Stack Buffer Overflow issue was discovered in 3S-Smart Software Solutions GmbH CODESYS Web Server. | 9.8 |