CVE-2019-13542
published 2019-09-17CVE-2019-13542: 3S-Smart Software Solutions GmbH CODESYS V3 OPC UA Server, all versions 3.5.11.0 to 3.5.15.0, allows an attacker to send crafted requests from a trusted OPC UA…
medium6.5CVSS 3.1
AVNACLPRLUINSUCNINAH
3S-Smart Software Solutions GmbH CODESYS V3 OPC UA Server, all versions 3.5.11.0 to 3.5.15.0, allows an attacker to send crafted requests from a trusted OPC UA client that cause a NULL pointer dereference, which may trigger a denial-of-service condition.
Affected
11 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| codesys | control_for_beaglebone | >= 3.5.11.0 < 3.5.15.0 | 3.5.15.0 |
| codesys | control_for_empc-a_imx6 | >= 3.5.11.0 < 3.5.15.0 | 3.5.15.0 |
| codesys | control_for_iot2000 | >= 3.5.11.0 < 3.5.15.0 | 3.5.15.0 |
| codesys | control_for_pfc100 | >= 3.5.11.0 < 3.5.15.0 | 3.5.15.0 |
| codesys | control_for_pfc200 | >= 3.5.11.0 < 3.5.15.0 | 3.5.15.0 |
| codesys | control_for_raspberry_pi | >= 3.5.11.0 < 3.5.15.0 | 3.5.15.0 |
| codesys | control_rte | >= 3.5.11.0 < 3.5.15.0 | 3.5.15.0 |
| codesys | control_win | >= 3.5.11.0 < 3.5.15.0 | 3.5.15.0 |
| codesys | linux | >= 3.5.11.0 < 3.5.15.0 | 3.5.15.0 |
| codesys | runtime_system_toolkit | >= 3.5.11.0 < 3.5.15.0 | 3.5.15.0 |
| gmbh | 3s-smart_software_solutions_gmbh_codesys_v3_opc_ua_server | — | — |