CVE-2022-32136

Summary

In multiple CODESYS products, a low privileged remote attacker may craft a request that cause a read access to an uninitialized pointer, resulting in a denial-of-service. User interaction is not required.

Affected Software

VendorProductVersion RangeStatus
CODESYSRuntime ToolkitV2 < V2.4.7.57affected
CODESYSPLCWinNTV2 < V2.4.7.57affected

Weaknesses

  • CWE-824: CWE-824 Access of Uninitialized Pointer

ADP Enrichment

CVE Program Container

Additional References

References