An authenticated, remote attacker may use a out-of-bounds write vulnerability in multiple CODESYS products in multiple versions to write data into memory which can lead to a denial-of-service condition, memory overwriting, or remote code execution.
References
Configurations
Configuration 1 (hide)
|
History
22 May 2023, 19:40
| Type | Values Removed | Values Added |
|---|---|---|
| References | (MISC) https://customers.codesys.com/index.php?eID=dumpFile&t=f&f=17554&token=5444f53b4c90fe37043671a100dffa75305d1825&download= - Vendor Advisory | |
| First Time |
Codesys control For Empc-a\/imx6 Sl
Codesys hmi \(sl\) Codesys Codesys control Win \(sl\) Codesys control For Raspberry Pi Sl Codesys control For Wago Touch Panels 600 Sl Codesys safety Sil2 Runtime Toolkit Codesys control For Beaglebone Sl Codesys safety Sil2 Psp Codesys control Runtime System Toolkit Codesys development System V3 Codesys control For Pfc200 Sl Codesys control For Plcnext Sl Codesys control Rte \(for Beckhoff Cx\) Sl Codesys control For Pfc100 Sl Codesys control For Linux Sl Codesys control For Iot2000 Sl Codesys control Rte \(sl\) |
|
| CPE | cpe:2.3:a:codesys:control_for_iot2000_sl:*:*:*:*:*:*:*:* cpe:2.3:a:codesys:control_win_\(sl\):*:*:*:*:*:*:*:* cpe:2.3:a:codesys:control_for_linux_sl:*:*:*:*:*:*:*:* cpe:2.3:a:codesys:safety_sil2_psp:*:*:*:*:*:*:*:* cpe:2.3:a:codesys:control_rte_\(sl\):*:*:*:*:*:*:*:* cpe:2.3:a:codesys:control_for_plcnext_sl:*:*:*:*:*:*:*:* cpe:2.3:a:codesys:control_for_empc-a\/imx6_sl:*:*:*:*:*:*:*:* cpe:2.3:a:codesys:control_for_raspberry_pi_sl:*:*:*:*:*:*:*:* cpe:2.3:a:codesys:control_runtime_system_toolkit:*:*:*:*:*:*:*:* cpe:2.3:a:codesys:safety_sil2_runtime_toolkit:*:*:*:*:*:*:*:* cpe:2.3:a:codesys:control_for_pfc200_sl:*:*:*:*:*:*:*:* cpe:2.3:a:codesys:control_for_pfc100_sl:*:*:*:*:*:*:*:* cpe:2.3:a:codesys:control_for_beaglebone_sl:*:*:*:*:*:*:*:* cpe:2.3:a:codesys:control_for_wago_touch_panels_600_sl:*:*:*:*:*:*:*:* cpe:2.3:a:codesys:control_rte_\(for_beckhoff_cx\)_sl:*:*:*:*:*:*:*:* cpe:2.3:a:codesys:development_system_v3:*:*:*:*:*:*:*:* cpe:2.3:a:codesys:hmi_\(sl\):*:*:*:*:*:*:*:* |
15 May 2023, 12:54
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2023-05-15 10:15
Updated : 2023-12-10 15:01
NVD link : CVE-2022-47379
Mitre link : CVE-2022-47379
CVE.ORG link : CVE-2022-47379
JSON object : View
Products Affected
codesys
- control_rte_\(for_beckhoff_cx\)_sl
- control_for_pfc200_sl
- development_system_v3
- control_for_wago_touch_panels_600_sl
- safety_sil2_psp
- control_for_plcnext_sl
- control_for_pfc100_sl
- control_for_beaglebone_sl
- control_runtime_system_toolkit
- control_for_linux_sl
- control_rte_\(sl\)
- control_for_raspberry_pi_sl
- control_win_\(sl\)
- safety_sil2_runtime_toolkit
- hmi_\(sl\)
- control_for_empc-a\/imx6_sl
- control_for_iot2000_sl
CWE
CWE-787
Out-of-bounds Write