In multiple CODESYS products, a low privileged remote attacker may craft a request that cause a read access to an uninitialized pointer, resulting in a denial-of-service. User interaction is not required.
CPE | Name | Operator | Version |
---|---|---|---|
plcwinnt | ge | 2.0 | |
plcwinnt | lt | 2.4.7.57 | |
runtime_toolkit | ge | 2.0 | |
runtime_toolkit | lt | 2.4.7.57 |