CVE-2019-13532
N/A
N/A
Summary
CODESYS V3 web server, all versions prior to 3.5.14.10, allows an attacker to send specially crafted http or https requests which may allow access to files outside the restricted working directory of the controller.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | CODESYS V3 web server | all versions prior to 3.5.14.10 | affected |
Weaknesses
- CWE-22: IMPROPER LIMITATION OF A PATHNAME TO A RESTRICTED DIRECTORY ('PATH TRAVERSAL') CWE-22
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.