PT-2021-7813 · 3S Smart Software Solutions · Codesys Control Runtime System

Published

2021-08-03

Updated

2021-08-30

CVE-2021-33485

CVSS v3.1

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions CODESYS Control Runtime system versions prior to 3.5.17.10

Description The issue is a Heap-based Buffer Overflow that can be exploited by a remote attacker, potentially leading to a denial of service or the execution of arbitrary code.

Recommendations For versions prior to 3.5.17.10, update to version 3.5.17.10 or later to resolve the issue.

Fix

Heap Based Buffer Overflow

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-122CWE-787

Related Identifiers

BDU:2023-03154

CVE-2021-33485

Affected Products

Codesys Control Runtime System

PT-2021-7813 · 3S Smart Software Solutions · Codesys Control Runtime System

CVE-2021-33485

Weakness Enumeration

Related Identifiers

Affected Products

References · 7