6.5
CVE-2022-47393
- EPSS 0.44%
- Veröffentlicht 15.05.2023 11:15:08
- Zuletzt bearbeitet 17.07.2025 13:11:12
- Quelle info@cert.vde.com
- CVE-Watchlists
- Unerledigt
LoginAn authenticated, remote attacker may use a Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple versions of multiple CODESYS products to force a denial-of-service situation.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Codesys ≫ Control For Beaglebone Sl Version < 4.8.0.0
Codesys ≫ Control For Iot2000 Sl Version < 4.8.0.0
Codesys ≫ Control For Linux Sl Version < 4.8.0.0
Codesys ≫ Control For Pfc100 Sl Version < 4.8.0.0
Codesys ≫ Control For Pfc200 Sl Version < 4.8.0.0
Codesys ≫ Control For Plcnext Sl Version < 4.8.0.0
Codesys ≫ Control For Raspberry Pi Sl Version < 4.8.0.0
Codesys ≫ Control For Wago Touch Panels 600 Sl Version < 4.8.0.0
Codesys ≫ Control Runtime System Toolkit Version < 3.5.19.0
Codesys ≫ Development System V3 Version < 3.5.19.0
Codesys ≫ Safety Sil2 Psp Version < 3.5.19.0
Codesys ≫ Safety Sil2 Runtime Toolkit Version < 3.5.19.0
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.44% | 0.624 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| info@cert.vde.com | 6.5 | 2.8 | 3.6 |
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
|
CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.