7.1
CVE-2014-0757
- EPSS 3.22%
- Veröffentlicht 31.01.2014 06:15:53
- Zuletzt bearbeitet 29.04.2026 01:13:23
- Quelle ics-cert@hq.dhs.gov
- CVE-Watchlists
- Unerledigt
Smart Software Solutions (3S) CoDeSys Runtime Toolkit NULL Pointer Dereference
Smart Software Solutions (3S) CoDeSys Runtime Toolkit before 2.4.7.44 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via unspecified vectors.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
3s-software ≫ Codesys Runtime Toolkit Version <= 2.4.7.43
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 3.22% | 0.866 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:N/I:N/A:P
|
| ics-cert@hq.dhs.gov | 7.1 | 8.6 | 6.9 |
AV:N/AC:M/Au:N/C:N/I:N/A:C
|
CWE-476 NULL Pointer Dereference
The product dereferences a pointer that it expects to be valid but is NULL.
http://ics-cert.us-cert.gov/advisories/ICSA-14-030-01
http://secunia.com/advisories/56713
https://www.cisa.gov/news-events/ics-advisories/icsa-14-030-01