Codesys Control For Beckhoff Cx9020 — known CVE vulnerabilities
Every CVE whose affected-product data names Codesys Control For Beckhoff Cx9020, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (6)
CVE-2022-22515 — CVSS 8.1 (high): A remote, authenticated attacker could utilize the control program of the CODESYS Control runtime system to use the vulnerability in order…
CVE-2022-22517 — CVSS 7.5 (high): An unauthenticated, remote attacker can disrupt existing communication channels between CODESYS products by guessing a valid channel ID and…
CVE-2022-22519 — CVSS 7.5 (high): A remote, unauthenticated attacker can send a specific crafted HTTP or HTTPS requests causing a buffer over-read resulting in a crash of…
CVE-2022-22514 — CVSS 7.1 (high): An authenticated, remote attacker can gain access to a dereferenced pointer contained in a request. The accesses can subsequently lead to…
CVE-2022-22513 — CVSS 6.5 (medium): An authenticated remote attacker can cause a null pointer dereference in the CmpSettings component of the affected CODESYS products which…
CVE-2022-22518 — CVSS 6.5 (medium): A bug in CmpUserMgr component can lead to only partially applied security policies. This can result in enabled, anonymous access to…