PT-2023-4344 · 3S Smart Software Solutions · Codesys

Fabio Romano

Publicado

2023-04-03

Atualizado

2025-07-17

CVE-2022-47381

CVSS v2.0

9.0

Alta

Vetor

AV:N/AC:L/Au:S/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions CODESYS products (affected versions not specified)

Description The issue is related to a stack-based out-of-bounds write vulnerability that can be exploited by an authenticated remote attacker to write data into the stack. This can lead to a denial-of-service condition, memory overwriting, or remote code execution. The vulnerability is associated with a buffer overflow in memory, which can be exploited to cause a denial-of-service condition or execute arbitrary code.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

RCE

DoS

Memory Corruption

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-787

Identificadores relacionados

BDU:2023-04687

CVE-2022-47381

Produtos afetados

Codesys

PT-2023-4344 · 3S Smart Software Solutions · Codesys

CVE-2022-47381

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 10