CVE-2021-34595

Summary

A crafted request with invalid offsets may cause an out-of-bounds read or write access in CODESYS V2 Runtime Toolkit 32 Bit full and PLCWinNT prior to versions V2.4.7.56, resulting in a denial-of-service condition or local memory overwrite.

Affected Software

VendorProductVersion RangeStatus
CODESYSCODESYS V2Runtime Toolkit 32 bit full < V2.4.7.56affected
CODESYSCODESYS V2PLCWinNT < V2.4.7.56affected

Weaknesses

  • CWE-823: CWE-823 Use of Out-of-range Pointer Offset

ADP Enrichment

CVE Program Container

Additional References

References