3s-software : Security Vulnerabilities, CVEs, (Directory traversal)
Directory traversal vulnerability in the Runtime Toolkit in CODESYS Runtime System 2.3.x and 2.4.x allows remote attackers to read, overwrite, or create arbitrary files via a .. (dot dot) in a request to the TCP listener service.
Max CVSS
10.0
EPSS Score
1.35%
Published
2013-01-21
Updated
2015-10-08
CVE-2012-4705
Public exploit
Directory traversal vulnerability in 3S CODESYS Gateway-Server before 2.3.9.27 allows remote attackers to execute arbitrary code via vectors involving a crafted pathname.
Max CVSS
10.0
EPSS Score
67.26%
Published
2013-02-24
Updated
2013-05-21
2 vulnerabilities found