CVE-2022-32137
8.8
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
In multiple CODESYS products, a low privileged remote attacker may craft a request, which may cause a heap-based buffer overflow, resulting in a denial-of-service condition or memory overwrite. User interaction is not required.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| CODESYS | Runtime Toolkit | V2 < V2.4.7.57 | affected |
| CODESYS | PLCWinNT | V2 < V2.4.7.57 | affected |
Weaknesses
- CWE-122: CWE-122 Heap-based Buffer Overflow
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.