CVE-2021-30191

EPSS 0.41%
Published 25.05.2021 13:15:17
Last modified 15.08.2025 20:27:36
Source cve@mitre.org
Teams watchlist Login
Open Login

CODESYS V2 Web-Server before 1.1.9.20 has a a Buffer Copy without Checking the Size of the Input.

Affected products Warnungen 0 Metrics 3 CWE 1 References 5

Data is provided by the National Vulnerability Database (NVD)

Wago ≫ 750-893 Firmware Version < fw08

Wago ≫ 750-893 Version-

Wago ≫ 750-891 Firmware Version < fw08

Wago ≫ 750-891 Version-

Wago ≫ 750-890 Firmware Version < fw08

Wago ≫ 750-890 Version-

Wago ≫ 750-889 Firmware Version < fw15

Wago ≫ 750-889 Version-

Wago ≫ 750-885 Firmware Version < fw15

Wago ≫ 750-885 Version-

Wago ≫ 750-882 Firmware Version < fw15

Wago ≫ 750-882 Version-

Wago ≫ 750-881 Firmware Version < fw15

Wago ≫ 750-881 Version-

Wago ≫ 750-880 Firmware Version < fw16

Wago ≫ 750-880 Version-

Wago ≫ 750-862 Firmware Version < fw08

Wago ≫ 750-862 Version-

Wago ≫ 750-852 Firmware Version < fw15

Wago ≫ 750-852 Version-

Wago ≫ 750-832 Firmware Version < fw08

Wago ≫ 750-832 Version-

Wago ≫ 750-831 Firmware Version < fw15

Wago ≫ 750-831 Version-

Wago ≫ 750-829 Firmware Version < fw15

Wago ≫ 750-829 Version-

Wago ≫ 750-8202 Firmware Version < 03.06.19_\(18\)

Wago ≫ 750-8202 Version-

Wago ≫ 750-8203 Firmware Version < 03.06.19_\(18\)

Wago ≫ 750-8203 Version-

Wago ≫ 750-8204 Firmware Version < 03.06.19_\(18\)

Wago ≫ 750-8204 Version-

Wago ≫ 750-8206 Firmware Version < 03.06.19_\(18\)

Wago ≫ 750-8206 Version-

Wago ≫ 750-8207 Firmware Version < 03.06.19_\(18\)

Wago ≫ 750-8207 Version-

Wago ≫ 750-8208 Firmware Version < 03.06.19_\(18\)

Wago ≫ 750-8208 Version-

Wago ≫ 750-8210 Firmware Version < 03.06.19_\(18\)

Wago ≫ 750-8210 Version-

Wago ≫ 750-8211 Firmware Version < 03.06.19_\(18\)

Wago ≫ 750-8211 Version-

Wago ≫ 750-8212 Firmware Version < 03.06.19_\(18\)

Wago ≫ 750-8212 Version-

Wago ≫ 750-8213 Firmware Version < 03.06.19_\(18\)

Wago ≫ 750-8213 Version-

Wago ≫ 750-8214 Firmware Version < 03.06.19_\(18\)

Wago ≫ 750-8214 Version-

Wago ≫ 750-8216 Firmware Version < 03.06.19_\(18\)

Wago ≫ 750-8216 Version-

Wago ≫ 750-8217 Firmware Version < 03.06.19_\(18\)

Wago ≫ 750-8217 Version-

Codesys ≫ V2 Web Server Version < 1.1.9.20

Wago ≫ 750-823 Firmware Version < fw08

Wago ≫ 750-823 Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.41%	0.582

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:N/I:N/A:P

CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

https://customers.codesys.com/index.php

Vendor Advisory

Permissions Required

https://customers.codesys.com/index.php?eID=dumpFile&t=f&f=14726&token=553da5d11234bbe1ceed59969d419a71bb8c8747&download=

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2021-30191

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2021-30191

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2021-30191

EUVD