3S-Software Codesys Gateway-Server vulnerabilities
6 known vulnerabilities affecting 3s-software/codesys_gateway-server.
Total CVEs
6
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL5HIGH1
Vulnerabilities
Page 1 of 1
CVE-2012-4705P2CRITICALCVSS 10.0PoC≤ 2.3.9.20v2.3.5.1+15 more2013-02-24
CVE-2012-4705 [CRITICAL] CWE-22 CVE-2012-4705: Directory traversal vulnerability in 3S CODESYS Gateway-Server before 2.3.9.27 allows remote attacke
Directory traversal vulnerability in 3S CODESYS Gateway-Server before 2.3.9.27 allows remote attackers to execute arbitrary code via vectors involving a crafted pathname.
nvd
CVE-2012-4708P3CRITICALCVSS 10.0≤ 2.3.9.20v2.3.5.1+15 more2013-02-24
CVE-2012-4708 [CRITICAL] CWE-119 CVE-2012-4708: Stack-based buffer overflow in 3S CODESYS Gateway-Server before 2.3.9.27 allows remote attackers to
Stack-based buffer overflow in 3S CODESYS Gateway-Server before 2.3.9.27 allows remote attackers to execute arbitrary code via a crafted packet.
nvd
CVE-2012-4704P3CRITICALCVSS 10.0≤ 2.3.9.20v2.3.5.1+15 more2013-02-24
CVE-2012-4704 [CRITICAL] CWE-20 CVE-2012-4704: Array index error in 3S CODESYS Gateway-Server before 2.3.9.27 allows remote attackers to execute ar
Array index error in 3S CODESYS Gateway-Server before 2.3.9.27 allows remote attackers to execute arbitrary code via a crafted packet.
nvd
CVE-2012-4707P3CRITICALCVSS 10.0≤ 2.3.9.19v2.3.5.1+14 more2013-02-24
CVE-2012-4707 [CRITICAL] CWE-94 CVE-2012-4707: 3S CODESYS Gateway-Server before 2.3.9.27 allows remote attackers to execute arbitrary code via vect
3S CODESYS Gateway-Server before 2.3.9.27 allows remote attackers to execute arbitrary code via vectors that trigger an out-of-bounds memory access.
nvd
CVE-2013-2781P3CRITICALCVSS 10.0v2.3.9.272013-05-23
CVE-2013-2781 [CRITICAL] CWE-399 CVE-2013-2781: Use-after-free vulnerability in the server application in 3S CODESYS Gateway 2.3.9.27 allows remote
Use-after-free vulnerability in the server application in 3S CODESYS Gateway 2.3.9.27 allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via unspecified vectors.
nvd
CVE-2012-4706P4HIGHCVSS 7.8≤ 2.3.9.20v2.3.5.1+15 more2013-02-24
CVE-2012-4706 [HIGH] CWE-189 CVE-2012-4706: Integer signedness error in 3S CODESYS Gateway-Server before 2.3.9.27 allows remote attackers to cau
Integer signedness error in 3S CODESYS Gateway-Server before 2.3.9.27 allows remote attackers to cause a denial of service via a crafted packet that triggers a heap-based buffer overflow.
nvd