CVE-2022-32142

HIGH Year: 2022
CVSS v3 Score
8.1
High
CVSS v2 Score
5.5
Medium
Weakness Type
CWE-823
View all →

Vulnerability Description

Multiple CODESYS Products are prone to a out-of bounds read or write access. A low privileged remote attacker may craft a request with invalid offset, which can cause an out-of-bounds read or write access, resulting in denial-of-service condition or local memory overwrite, which can lead to a change of local files. User interaction is not required.

Related Vulnerabilities

CVE-2020-27009

HIGH
CVSS:8.1(High)

A vulnerability has been identified in APOGEE PXC Compact (BACnet) (All versions < V3.5.5), APOGEE PXC Compact (P2 Ethernet) (All versions < V2.8.20), APOGEE PXC Modular (BACnet) (All versions < V3.5....

CWE-8232020

CVE-2021-34595

HIGH
CVSS:8.1(High)

A crafted request with invalid offsets may cause an out-of-bounds read or write access in CODESYS V2 Runtime Toolkit 32 Bit full and PLCWinNT prior to versions V2.4.7.56, resulting in a denial-of-serv...

CWE-8232021

CVE-2025-0467

HIGH
CVSS:8.2(High)

Kernel software installed and running inside a Guest VM may exploit memory shared with the GPU Firmware to write data outside the Guest's virtualised GPU memory.

CWE-8232025

CVE-2021-22549

HIGH
CVSS:7.8(High)

An attacker can modify the address to point to trusted memory to overwrite arbitrary trusted memory. It is recommended to update past 0.6.2 or git commit https://github.com/google/asylo/commit/53ed5d8...

CWE-8232021

CVE-2021-22550

HIGH
CVSS:7.8(High)

An attacker can modify the pointers in enclave memory to overwrite arbitrary memory addresses within the secure enclave. It is recommended to update past 0.6.3 or git commit https://github.com/google/...

CWE-8232021

CVE-2022-0729

HIGH
CVSS:7.8(High)

Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior to 8.2.4440.

CWE-8232022