CVE-2022-32140

Summary

Multiple CODESYS products are affected to a buffer overflow.A low privileged remote attacker may craft a request, which can cause a buffer copy without checking the size of the service, resulting in a denial-of-service condition. User Interaction is not required.

Affected Software

VendorProductVersion RangeStatus
CODESYSRuntime ToolkitV2 < V2.4.7.57affected
CODESYSPLCWinNTV2 < V2.4.7.57affected

Weaknesses

  • CWE-120: CWE-120 Buffer Overflow

ADP Enrichment

CVE Program Container

Additional References

References