threat
engine
.sh
Back
·
··:··
Home
/
Product
/
codesys opc server
Product
codesys opc server
7 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2024-25552
<= 4.88
A local attacker can gain administrative privileges by inserting an executable file in the path of the affected product.
7.8
HIGH
CVE-2022-31805
< 3.5.18.30
In the CODESYS Development System multiple components in multiple versions transmit the passwords for the communication between cl
7.5
HIGH
CVE-2021-29242
>= 3.0 and < 3.5.17.0
CODESYS Control Runtime system before 3.5.17.0 has improper input validation. Attackers can send crafted communication packets to
7.3
HIGH
CVE-2020-8478
all versions
Insufficient protection of the inter-process communication functions in ABB System 800xA products OPC Server for AC 800M, MMS Serv
5.3
MEDIUM
CVE-2020-8472
<= 6.0
Insufficient folder permissions used by system functions in ABB System 800xA products OPCServer for AC800M (versions 6.0 and earli
5.5
MEDIUM
CVE-2018-20026
>= 3.0 and < 3.5.14.0
Improper Communication Address Filtering exists in CODESYS V3 products versions prior V3.5.14.0.
7.5
HIGH
CVE-2007-4473
all versions
Gesytec Easylon OPC Server before 2.3.44 does not properly validate server handles, which allows remote attackers to execute arbit
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin