Vulnerability identifier: #VU85960
Vulnerability risk: Medium
CVSSv3.1: 5.7 [CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]
CVE-ID:
CWE-ID:
CWE-822
Exploitation vector: Network
Exploit availability: No
Vulnerable software:
CODESYS Control RTE
Client/Desktop applications /
Other client software
CODESYS Control RTE (for Beckhoff CX)
Client/Desktop applications /
Other client software
CODESYS Control Win
Client/Desktop applications /
Other client software
CODESYS Control Runtime System Toolkit
Client/Desktop applications /
Other client software
CODESYS Safety SIL2 Runtime Toolkit
Client/Desktop applications /
Other client software
CODESYS Safety SIL2 PSP
Client/Desktop applications /
Other client software
CODESYS HMI
Client/Desktop applications /
Other client software
CODESYS Development System V3
Client/Desktop applications /
Other client software
CODESYS Control for BeagleBone SL
Client/Desktop applications /
Other client software
CODESYS Control for emPC-A/iMX6 SL
Client/Desktop applications /
Other client software
CODESYS Control for IOT2000 SL
Client/Desktop applications /
Other client software
CODESYS Control for Linux SL
Client/Desktop applications /
Other client software
CODESYS Control for PFC100 SL
Client/Desktop applications /
Other client software
CODESYS Control for PFC200 SL
Client/Desktop applications /
Other client software
CODESYS Control for PLCnext SL
Client/Desktop applications /
Other client software
CODESYS Control for Raspberry Pi SL
Client/Desktop applications /
Other client software
CODESYS Control for WAGO Touch Panels 600 SL
Client/Desktop applications /
Other client software
Vendor:
Description
The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to untrusted pointer dereference in the CmpFiletransfer component . A remote usercan send a specially crafted request and cause a denial of service condition on the target system.
Mitigation
Install updates from vendor's website.
Vulnerable software versions
External links
http://customers.codesys.com/index.php?eID=dumpFile&t=f&f=17554&token=5444f53b4c90fe37043671a100dffa75305d1825&download=
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.