In multiple products of CODESYS v3 in multiple versions a remote low privileged user could utilize this vulnerability to read and modify system files and OS resources or DoS the device.
References
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 07:34
Type | Values Removed | Values Added |
---|---|---|
References | () https://customers.codesys.com/index.php?eID=dumpFile&t=f&f=17553&token=cf49757d232ea8021f0c0dd6c65e71ea5942b12d&download= - Vendor Advisory |
09 Aug 2023, 11:15
Type | Values Removed | Values Added |
---|---|---|
Summary | In multiple products of CODESYS v3 in multiple versions a remote low privileged user could utilize this vulnerability to read and modify system files and OS resources or DoS the device. |
06 Jul 2023, 14:37
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-1188 |
Information
Published : 2023-03-23 12:15
Updated : 2024-11-21 07:34
NVD link : CVE-2022-4224
Mitre link : CVE-2022-4224
CVE.ORG link : CVE-2022-4224
JSON object : View
Products Affected
codesys
- control_for_raspberry_pi_sl
- control_for_empc-a\/imx6_sl
- control_for_pfc100_sl
- safety_sil2
- control_rte_sl_\(for_beckhoff_cx\)
- control_for_linux_sl
- control_rte_sl
- control_for_wago_touch_panels_600_sl
- hmi_sl
- control_for_pfc200_sl
- control_for_iot2000_sl
- development_system
- control_for_plcnext_sl
- runtime_toolkit
- control_for_beaglebone_sl
- control_win_sl
CWE
CWE-1188
Insecure Default Initialization of Resource