Approved changes feed: RSS · Atom

cpe:2.3:a:n/a:3s-smart_software_solutions_gmbh_codesys_web_server:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorN/A (22f567d3-1203-528c-8f0e-3eb9c2f6ca78)
Product3S Smart Software Solutions Gmbh Codesys Web Server (16881aad-b512-5daa-895a-731a50c9c994)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2018-5440 vulnerable 2026-06-08 05:11:51.003374 Details available
A Stack-based Buffer Overflow issue was discovered in 3S-Smart CODESYS Web Server. Specifically: all Microsoft Windows (also WinCE) based CODESYS web servers running stand-alone Version 2.3, or as part of the CODESYS runtime system running prior to Version V1.1.9.19. A crafted request may cause a buffer overflow and could therefore execute arbitrary code on the web server or lead to a denial-of-service condition due to a crash in the web server.
Published: 2018-02-15T10:00:00.000Z
Updated: 2024-08-05T05:33:44.368Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2017-6027 vulnerable 2026-06-08 05:09:50.391076 Details available
An Arbitrary File Upload issue was discovered in 3S-Smart Software Solutions GmbH CODESYS Web Server. The following versions of CODESYS Web Server, part of the CODESYS WebVisu web browser visualization software, are affected: CODESYS Web Server Versions 2.3 and prior. A specially crafted web server request may allow the upload of arbitrary files (with a dangerous type) to the CODESYS Web Server without authorization which may allow remote code execution.
Published: 2017-05-19T02:43:00.000Z
Updated: 2024-08-05T15:18:49.577Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2017-6025 vulnerable 2026-06-08 05:09:50.386470 Details available
A Stack Buffer Overflow issue was discovered in 3S-Smart Software Solutions GmbH CODESYS Web Server. The following versions of CODESYS Web Server, part of the CODESYS WebVisu web browser visualization software, are affected: CODESYS Web Server Versions 2.3 and prior. A malicious user could overflow the stack buffer by providing overly long strings to functions that handle the XML. Because the function does not verify string size before copying to memory, the attacker may then be able to crash the application or run arbitrary code.
Published: 2017-05-19T02:43:00.000Z
Updated: 2024-08-05T15:18:49.399Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.