Описание
An unauthenticated remote attacker, who beats a race condition, can exploit a flaw in the communication servers of the CODESYS Control runtime system on Linux and QNX to trigger an out-of-bounds read via crafted socket communication, potentially causing a denial of service.
EPSS
Процентиль: 31%
0.00116
Низкий
5.9 Medium
CVSS3
Дефекты
CWE-125
Связанные уязвимости
CVSS3: 5.9
github
2 месяца назад
An unauthenticated remote attacker, who beats a race condition, can exploit a flaw in the communication servers of the CODESYS Control runtime system on Linux and QNX to trigger an out-of-bounds read via crafted socket communication, potentially causing a denial of service.
CVSS3: 5.9
fstec
2 месяца назад
Уязвимость библиотеки SysSocket среды выполнения CODESYS Control, позволяющая нарушителю вызвать отказ в обслуживании
EPSS
Процентиль: 31%
0.00116
Низкий
5.9 Medium
CVSS3
Дефекты
CWE-125