| Max CVSS | 10.0 | Min CVSS | 9.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2012-6069 | 10.0 |
Directory traversal vulnerability in the Runtime Toolkit in CODESYS Runtime System 2.3.x and 2.4.x allows remote attackers to read, overwrite, or create arbitrary files via a .. (dot dot) in a request to the TCP listener service.
|
08-10-2015 - 14:23 | 21-01-2013 - 21:55 | |
| CVE-2012-6068 | 10.0 |
The Runtime Toolkit in CODESYS Runtime System 2.3.x and 2.4.x does not require authentication, which allows remote attackers to (1) execute commands via the command-line interface in the TCP listener service or (2) transfer files via requests to the
|
05-05-2014 - 05:16 | 21-01-2013 - 21:55 | |
| CVE-2014-0769 | 9.3 |
The Festo CECX-X-C1 Modular Master Controller with CoDeSys and CECX-X-M1 Modular Controller with CoDeSys and SoftMotion do not require authentication for connections to certain TCP ports, which allows remote attackers to (1) modify the configuration
|
25-04-2014 - 13:58 | 25-04-2014 - 05:12 | |
| CVE-2014-0760 | 9.3 |
The Festo CECX-X-C1 Modular Master Controller with CoDeSys and CECX-X-M1 Modular Controller with CoDeSys and SoftMotion provide an undocumented access method involving the FTP protocol, which allows remote attackers to execute arbitrary code or cause
|
25-04-2014 - 13:56 | 25-04-2014 - 05:12 |