Vulnerabilities > Codesys > Simulation Runtime > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-03-23 | CVE-2018-25048 | Path Traversal vulnerability in Codesys products The CODESYS runtime system in multiple versions allows an remote low privileged attacker to use a path traversal vulnerability to access and modify all system files as well as DoS the device. | 8.8 |
| 2021-05-03 | CVE-2021-29242 | Improper Input Validation vulnerability in Codesys products CODESYS Control Runtime system before 3.5.17.0 has improper input validation. | 7.3 |
| 2020-07-22 | CVE-2020-15806 | Memory Leak vulnerability in Codesys products CODESYS Control runtime system before 3.5.16.10 allows Uncontrolled Memory Allocation. | 7.5 |
| 2019-09-17 | CVE-2019-9009 | Improper Handling of Exceptional Conditions vulnerability in Codesys products An issue was discovered in 3S-Smart CODESYS before 3.5.15.0 . | 7.5 |
| 2019-09-17 | CVE-2019-9008 | Incorrect Permission Assignment for Critical Resource vulnerability in Codesys products An issue was discovered in 3S-Smart CODESYS V3 through 3.5.12.30. | 8.8 |