CVE-2022-32142

Multiple CODESYS Products are prone to a out-of bounds read or write access. A low privileged remote attacker may craft a request with invalid offset, which can cause an out-of-bounds read or write access, resulting in denial-of-service condition or local memory overwrite, which can lead to a change of local files. User interaction is not required.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:codesys:plcwinnt:*:*:*:*:*:*:*:*
cpe:2.3:a:codesys:runtime_toolkit:*:*:*:*:*:*:x86:*

History

No history.

Information

Published : 2022-06-24 08:15

Updated : 2024-02-28 19:09


NVD link : CVE-2022-32142

Mitre link : CVE-2022-32142

CVE.ORG link : CVE-2022-32142


JSON object : View

Products Affected

codesys

  • plcwinnt
  • runtime_toolkit
CWE
CWE-823

Use of Out-of-range Pointer Offset