CVE-2022-31804
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Summary
The CODESYS Gateway Server V2 does not verifiy that the size of a request is within expected limits. An unauthenticated attacker may allocate an arbitrary amount of memory, which may lead to a crash of the Gateway due to an out-of-memory condition.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| CODESYS | CODESYS Gateway Server V2 | unspecified < V2.3.9.38 | affected |
Weaknesses
- CWE-789: CWE-789: Memory Allocation with Excessive Size Value
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.