Vulnerabilities > Codesys > Safety Sil2 Runtime Toolkit > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-05-15 CVE-2022-47392 Improper Input Validation vulnerability in Codesys products
An authenticated, remote attacker may use a improper input validation vulnerability in the CmpApp/CmpAppBP/CmpAppForce Components of multiple CODESYS products in multiple versions to read from an invalid address which can lead to a denial-of-service condition.
network
low complexity
codesys CWE-20
6.5
2023-05-15 CVE-2022-47393 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Codesys products
An authenticated, remote attacker may use a Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple versions of multiple CODESYS products to force a denial-of-service situation.
network
low complexity
codesys CWE-119
6.5
2023-05-15 CVE-2022-47378 Improper Input Validation vulnerability in Codesys products
Multiple CODESYS products in multiple versions are prone to a improper input validation vulnerability.
network
low complexity
codesys CWE-20
6.5