cbcvebase.
CVE-2022-32141
published 2022-06-24

CVE-2022-32141: Multiple CODESYS Products are prone to a buffer over read. A low privileged remote attacker may craft a request with an invalid offset, which can cause an…

medium6.5CVSS 3.1
AVNACLPRLUINSUCNINAH
Multiple CODESYS Products are prone to a buffer over read. A low privileged remote attacker may craft a request with an invalid offset, which can cause an internal buffer over-read, resulting in a denial-of-service condition. User interaction is not required.

Affected

4 ranges
VendorProductVersion rangeFixed in
codesysplcwinnt>= 2.0 < 2.4.7.572.4.7.57
codesysplcwinnt>= V2 < V2.4.7.57V2.4.7.57
codesysruntime_toolkit>= 2.0 < 2.4.7.572.4.7.57
codesysruntime_toolkit>= V2 < V2.4.7.57V2.4.7.57