Page 2 of 7 results (0.004 seconds)

CVSS: 10.0EPSS: 67%CPEs: 17EXPL: 1

Directory traversal vulnerability in 3S CODESYS Gateway-Server before 2.3.9.27 allows remote attackers to execute arbitrary code via vectors involving a crafted pathname. Vulnerabilidad de salto de directorio en CoDeSys Gateway-3S Server antes v2.3.9.27 permite a atacantes remotos ejecutar código arbitrario a través de vectores relacionados con una ruta diseñada. • https://www.exploit-db.com/exploits/41712 http://ics-cert.us-cert.gov/advisories/ICSA-13-050-01A http://ics-cert.us-cert.gov/pdf/ICSA-13-050-01-a.pdf • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •

CVSS: 7.8EPSS: 0%CPEs: 17EXPL: 0

Integer signedness error in 3S CODESYS Gateway-Server before 2.3.9.27 allows remote attackers to cause a denial of service via a crafted packet that triggers a heap-based buffer overflow. Error de asignación de entero en 3S CODESYS Gateway-Server anterior a v2.3.9.27, permite a atacantes remotos provocar una denegación de servicio a través de un paquete especialmente manipulado que provoca un desbordamiento de búfer (heap) • http://ics-cert.us-cert.gov/advisories/ICSA-13-050-01A • CWE-189: Numeric Errors •