CVE-2022-22516
published 2022-04-07CVE-2022-22516: The SysDrv3S driver in the CODESYS Control runtime system on Microsoft Windows allows any system user to read and write within restricted memory space.
high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
The SysDrv3S driver in the CODESYS Control runtime system on Microsoft Windows allows any system user to read and write within restricted memory space.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| codesys | codesys_control_rte | >= V3.5.18.0 < V3.5.18.0 | V3.5.18.0 |
| codesys | codesys_control_rte_sl | >= V3.5.18.0 < V3.5.18.0 | V3.5.18.0 |
| codesys | codesys_control_win | >= V3.5.18.0 < V3.5.18.0 | V3.5.18.0 |
| codesys | codesys_development_system_v3 | >= V3.5.18.0 < V3.5.18.0 | V3.5.18.0 |
| codesys | control_rte_sl | < 3.5.18.0 | 3.5.18.0 |
| codesys | control_win_sl | < 3.5.18.0 | 3.5.18.0 |
| codesys | development_system | < 3.5.18.0 | 3.5.18.0 |