CVE-2019-13542
- EPSS 0.24%
- Published 17.09.2019 19:15:10
- Last modified 21.11.2024 04:25:06
3S-Smart Software Solutions GmbH CODESYS V3 OPC UA Server, all versions 3.5.11.0 to 3.5.15.0, allows an attacker to send crafted requests from a trusted OPC UA client that cause a NULL pointer dereference, which may trigger a denial-of-service condit...
CVE-2019-9009
- EPSS 0.38%
- Published 17.09.2019 16:15:11
- Last modified 21.11.2024 04:50:48
An issue was discovered in 3S-Smart CODESYS before 3.5.15.0 . Crafted network packets cause the Control Runtime to crash.
CVE-2019-9008
- EPSS 0.69%
- Published 17.09.2019 14:15:10
- Last modified 21.11.2024 04:50:48
An issue was discovered in 3S-Smart CODESYS V3 through 3.5.12.30. A user with low privileges can take full control over the runtime.
CVE-2019-13532
- EPSS 2.39%
- Published 13.09.2019 17:15:11
- Last modified 21.11.2024 04:25:05
CODESYS V3 web server, all versions prior to 3.5.14.10, allows an attacker to send specially crafted http or https requests which may allow access to files outside the restricted working directory of the controller.
CVE-2019-13548
- EPSS 3.81%
- Published 13.09.2019 17:15:11
- Last modified 21.11.2024 04:25:07
CODESYS V3 web server, all versions prior to 3.5.14.10, allows an attacker to send specially crafted http or https requests which could cause a stack overflow and create a denial-of-service condition or allow remote code execution.