In CmpChannelServer of CODESYS V3 in multiple versions an uncontrolled ressource consumption allows an unauthorized attacker to block new communication channel connections. Existing connections are not affected.
2022-07-11T11:15:08.240
2024-11-21T07:03:23.950
Modified
CVSSv3.1: 7.5 (HIGH)
AV:N/AC:L/Au:N/C:N/I:N/A:P
10.0
2.9
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | codesys | control_for_beaglebone | < 4.5.0.0 | Yes |
| Application | codesys | control_for_empc-a\/imx6 | < 4.5.0.0 | Yes |
| Application | codesys | control_for_iot2000_sl | < 4.6.0.0 | Yes |
| Application | codesys | control_for_linux_sl | < 4.5.0.0 | Yes |
| Application | codesys | control_for_pfc100_sl | < 4.5.0.0 | Yes |
| Application | codesys | control_for_pfc200_sl | < 4.5.0.0 | Yes |
| Application | codesys | control_for_plcnext | < 4.6.0.0 | Yes |
| Application | codesys | control_for_raspberry_pi_sl | < 4.5.0.0 | Yes |
| Application | codesys | control_for_wago_touch_panels_600 | < 4.5.0.0 | Yes |
| Application | codesys | control_rte_sl | < 3.5.18.20 | Yes |
| Application | codesys | control_rte_sl_\(for_beckhoff_cx\) | < 3.5.18.20 | Yes |
| Application | codesys | control_runtime_system_toolkit | < 3.5.18.20 | Yes |
| Application | codesys | control_win | < 3.5.18.20 | Yes |
| Application | codesys | development_system | < 3.5.18.20 | Yes |
| Application | codesys | edge_gateway | < 3.5.18.20 | Yes |
| Application | codesys | edge_gateway | < 4.5.0.0 | Yes |
| Application | codesys | embedded_target_visu_toolkit | < 3.5.18.20 | Yes |
| Application | codesys | gateway | < 3.5.18.20 | Yes |
| Application | codesys | hmi | < 3.5.18.20 | Yes |
| Application | codesys | remote_target_visu_toolkit | < 3.5.18.20 | Yes |