Codesys Control Rte Sl (for Beckhoff Cx) — known CVE vulnerabilities
Every CVE whose affected-product data names Codesys Control Rte Sl (for Beckhoff Cx), ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (28)
CVE-2022-4224 — CVSS 8.8 (high): In multiple products of CODESYS v3 in multiple versions a remote low privileged user could utilize this vulnerability to read and modify…
CVE-2022-4046 — CVSS 8.8 (high): In CODESYS Control in multiple versions a improper restriction of operations within the bounds of a memory buffer allow an remote attacker…
CVE-2022-22515 — CVSS 8.1 (high): A remote, authenticated attacker could utilize the control program of the CODESYS Control runtime system to use the vulnerability in order…
CVE-2022-22516 — CVSS 7.8 (high): The SysDrv3S driver in the CODESYS Control runtime system on Microsoft Windows allows any system user to read and write within restricted…
CVE-2022-30791 — CVSS 7.5 (high): In CmpBlkDrvTcp of CODESYS V3 in multiple versions an uncontrolled ressource consumption allows an unauthorized attacker to block new TCP…
CVE-2022-30792 — CVSS 7.5 (high): In CmpChannelServer of CODESYS V3 in multiple versions an uncontrolled ressource consumption allows an unauthorized attacker to block new…
CVE-2018-20026 — CVSS 7.5 (high): Improper Communication Address Filtering exists in CODESYS V3 products versions prior V3.5.14.0.
CVE-2022-22517 — CVSS 7.5 (high): An unauthenticated, remote attacker can disrupt existing communication channels between CODESYS products by guessing a valid channel ID and…
CVE-2022-22519 — CVSS 7.5 (high): A remote, unauthenticated attacker can send a specific crafted HTTP or HTTPS requests causing a buffer over-read resulting in a crash of…
CVE-2025-41738 — CVSS 7.5 (high): An unauthenticated remote attacker may cause the visualisation server of the CODESYS Control runtime system to access a resource with a…
CVE-2022-22514 — CVSS 7.1 (high): An authenticated, remote attacker can gain access to a dereferenced pointer contained in a request. The accesses can subsequently lead to…
CVE-2023-37545 — CVSS 6.5 (medium): In multiple Codesys products in multiple versions, after successful authentication as a user, specific crafted network communication…
CVE-2023-37546 — CVSS 6.5 (medium): In multiple Codesys products in multiple versions, after successful authentication as a user, specific crafted network communication…
CVE-2023-37547 — CVSS 6.5 (medium): In multiple Codesys products in multiple versions, after successful authentication as a user, specific crafted network communication…
CVE-2023-37548 — CVSS 6.5 (medium): In multiple Codesys products in multiple versions, after successful authentication as a user, specific crafted network communication…
CVE-2023-37549 — CVSS 6.5 (medium): In multiple Codesys products in multiple versions, after successful authentication as a user, specific crafted network communication…
CVE-2023-37550 — CVSS 6.5 (medium): In multiple Codesys products in multiple versions, after successful authentication as a user, specific crafted network communication…
CVE-2023-37551 — CVSS 6.5 (medium): In multiple Codesys products in multiple versions, after successful authentication as a user, specially crafted network communication…
CVE-2022-22513 — CVSS 6.5 (medium): An authenticated remote attacker can cause a null pointer dereference in the CmpSettings component of the affected CODESYS products which…
CVE-2023-37553 — CVSS 6.5 (medium): In multiple versions of multiple Codesys products, after successful authentication as a user, specific crafted network communication…
CVE-2023-37554 — CVSS 6.5 (medium): In multiple versions of multiple Codesys products, after successful authentication as a user, specific crafted network communication…
CVE-2023-37555 — CVSS 6.5 (medium): In multiple versions of multiple Codesys products, after successful authentication as a user, specific crafted network communication…
CVE-2023-37556 — CVSS 6.5 (medium): In multiple versions of multiple Codesys products, after successful authentication as a user, specific crafted network communication…
CVE-2023-37557 — CVSS 6.5 (medium): After successful authentication as a user in multiple Codesys products in multiple versions, specific crafted remote communication requests…
CVE-2023-37558 — CVSS 6.5 (medium): After successful authentication as a user in multiple Codesys products in multiple versions, specific crafted network communication…
CVE-2023-37559 — CVSS 6.5 (medium): After successful authentication as a user in multiple Codesys products in multiple versions, specific crafted network communication…
CVE-2023-37552 — CVSS 6.5 (medium): In multiple versions of multiple Codesys products, after successful authentication as a user, specific crafted network communication…