Vulnerabilities > Pilz

DATE CVE VULNERABILITY TITLE RISK
2022-12-26 CVE-2020-12069 Use of Password Hash With Insufficient Computational Effort vulnerability in Pilz PMC 3.0.0
In CODESYS V3 products in all versions prior V3.5.16.0 containing the CmpUserMgr, the CODESYS Control runtime system stores the online communication passwords using a weak hashing algorithm.
network
low complexity
pilz CWE-916
critical
9.8
2022-11-24 CVE-2022-40976 Path Traversal vulnerability in multiple products
A path traversal vulnerability was discovered in multiple Pilz products.
local
low complexity
pilz pliz CWE-22
5.5
2022-11-24 CVE-2022-40977 Path Traversal vulnerability in Pilz products
A path traversal vulnerability was discovered in Pilz PASvisu Server before 1.12.0.
network
low complexity
pilz CWE-22
7.5
2019-01-25 CVE-2018-19009 Credentials Management vulnerability in Pilz Pnozmulti Configurator
Pilz PNOZmulti Configurator prior to version 10.9 allows an authenticated attacker with local access to the system containing the PNOZmulti Configurator software to view sensitive credential data in clear-text.
local
low complexity
pilz CWE-255
2.1