CVE-2018-25048
8.8
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
The CODESYS runtime system in multiple versions allows an remote low privileged attacker to use a path traversal vulnerability to access and modify all system files as well as DoS the device.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| CODESYS | Control for BeagleBone | 3.0.0.0 < 3.5.12.30 | affected |
| CODESYS | Control for emPC-A/iMX6 | 3.0.0.0 < 3.5.12.30 | affected |
| CODESYS | Control for IOT2000 | 3.0.0.0 < 3.5.12.30 | affected |
| CODESYS | Control for PFC100 | 3.0.0.0 < 3.5.12.30 | affected |
| CODESYS | Control for PFC200 | 3.0.0.0 < 3.5.12.30 | affected |
| CODESYS | Control for Raspberry Pi | 3.0.0.0 < 3.5.12.30 | affected |
| CODESYS | Control RTE V3 (all variants) | 3.0.0.0 < 3.5.12.30 | affected |
| CODESYS | Control Win V3 (all variants) | 3.0.0.0 < 3.5.12.30 | affected |
| CODESYS | V3 Simulation Runtime (part of the CODESYS Development System) | 3.0.0.0 < 3.5.12.30 | affected |
| CODESYS | HMI V3 (all variants) | 3.0.0.0 < 3.5.12.30 | affected |
| CODESYS | V3 Remote Target Visu (all variants) | 3.0.0.0 < 3.5.12.30 | affected |
| CODESYS | Control V3 Runtime System Toolkit | 3.0.0.0 < 3.5.12.30 | affected |
| CODESYS | V3 Embedded Target Visu Toolkit | 3.0.0.0 < 3.5.12.30 | affected |
| CODESYS | V3 Remote Target Visu Toolkit | 3.0.0.0 < 3.5.12.30 | affected |
| CODESYS | Runtime Toolkit 32 bit embedded | 2.0.0.0 < 2.3.2.10 | affected |
| CODESYS | Runtime Toolkit 32 bit full | 2.0.0.0 < 2.4.7.52 | affected |
| CODESYS | Runtime PLCWinNT | 2.0.0.0 < 2.4.7.52 | affected |
Weaknesses
- CWE-22: CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
ADP Enrichment
CVE Program Container
Additional References
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: total
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.