Codesys Control_for_wago_touch_panels_600_sl
43 CVEs affecting Codesys Control_for_wago_touch_panels_600_sl. Latest disclosed: 2025-12-01. Critical: 0, High: 22.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2023-6357 | High | 8.8 | 2023-12-05 | A low-privileged remote attacker could exploit the vulnerability and inject additional system commands via file system libraries which could give the attacker… |
CVE-2022-4046 | High | 8.8 | 2023-08-03 | In CODESYS Control in multiple versions a improper restriction of operations within the bounds of a memory buffer allow an remote attacker with user privileges… |
CVE-2022-47390 | High | 8.8 | 2023-05-15 | An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple… |
CVE-2022-47389 | High | 8.8 | 2023-05-15 | An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple… |
CVE-2022-47388 | High | 8.8 | 2023-05-15 | An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple… |
CVE-2022-47387 | High | 8.8 | 2023-05-15 | An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple… |
CVE-2022-47386 | High | 8.8 | 2023-05-15 | An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple… |
CVE-2022-47385 | High | 8.8 | 2023-05-15 | An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the CmpAppForce Component of multiple CODESYS products in multiple… |
CVE-2022-47384 | High | 8.8 | 2023-05-15 | An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple… |
CVE-2022-47383 | High | 8.8 | 2023-05-15 | An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple… |
CVE-2022-47382 | High | 8.8 | 2023-05-15 | An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple… |
CVE-2022-47381 | High | 8.8 | 2023-05-15 | An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in multiple CODESYS products in multiple versions to write data into t… |
CVE-2022-47380 | High | 8.8 | 2023-05-15 | An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in multiple CODESYS products in multiple versions to write data into… |
CVE-2022-47379 | High | 8.8 | 2023-05-15 | An authenticated, remote attacker may use a out-of-bounds write vulnerability in multiple CODESYS products in multiple versions to write data into memory which… |
CVE-2022-4224 | High | 8.8 | 2023-03-23 | In multiple products of CODESYS v3 in multiple versions a remote low privileged user could utilize this vulnerability to read and modify system files and OS re… |
CVE-2022-22515 | High | 8.1 | 2022-04-07 | A remote, authenticated attacker could utilize the control program of the CODESYS Control runtime system to use the vulnerability in order to read and modify t… |
CVE-2025-41738 | High | 7.5 | 2025-12-01 | An unauthenticated remote attacker may cause the visualisation server of the CODESYS Control runtime system to access a resource with a pointer of wrong type… |
CVE-2022-47391 | High | 7.5 | 2023-05-15 | In multiple CODESYS products in multiple versions an unauthorized, remote attacker may use a improper input validation vulnerability to read from invalid addre… |
CVE-2022-22519 | High | 7.5 | 2022-04-07 | A remote, unauthenticated attacker can send a specific crafted HTTP or HTTPS requests causing a buffer over-read resulting in a crash of the webserver of the C… |
CVE-2022-22517 | High | 7.5 | 2022-04-07 | An unauthenticated, remote attacker can disrupt existing communication channels between CODESYS products by guessing a valid channel ID and injecting packets… |