VAR-201509-0300
Vulnerability from variot - Updated: 2023-12-18 12:06Multiple heap-based buffer overflows in 3S-Smart CODESYS Gateway Server before 2.3.9.34 allow remote attackers to execute arbitrary code via opcode (1) 0x3ef or (2) 0x3f0. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of the 0x3ef opcode. An attacker can leverage this vulnerability to execute code under the context of the process. 3S-Smart Software Solutions CoDeSys is a PLC (programmable controller) software programming tool from 3S-Smart Software Solutions, Germany. The CODESYS Gateway Server is one of the CODESYS gateway servers. Failed attacks will cause denial-of-service conditions. Runtime Toolkit is the runtime toolkit of CoDeSys
Show details on source website{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-201509-0300",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "gateway server",
"scope": null,
"trust": 1.4,
"vendor": "codesys",
"version": null
},
{
"model": "codesys gateway server",
"scope": "lt",
"trust": 1.0,
"vendor": "3s smart",
"version": "2.3.9.34"
},
{
"model": "codesys gateway server",
"scope": "lt",
"trust": 0.8,
"vendor": "3s smart",
"version": "2.3.9.47"
},
{
"model": "software solutions codesys gateway server",
"scope": "lt",
"trust": 0.6,
"vendor": "3s smart",
"version": "2.3.9.47"
},
{
"model": "codesys gateway server",
"scope": "eq",
"trust": 0.6,
"vendor": "3s smart",
"version": "2.3.9.46"
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "codesys gateway server",
"version": "*"
}
],
"sources": [
{
"db": "IVD",
"id": "73900d9c-2351-11e6-abef-000c29c66e3d"
},
{
"db": "ZDI",
"id": "ZDI-15-442"
},
{
"db": "ZDI",
"id": "ZDI-15-441"
},
{
"db": "CNVD",
"id": "CNVD-2015-06220"
},
{
"db": "JVNDB",
"id": "JVNDB-2015-004927"
},
{
"db": "NVD",
"id": "CVE-2015-6460"
},
{
"db": "CNNVD",
"id": "CNNVD-201509-256"
}
]
},
"configurations": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/configurations#",
"children": {
"@container": "@list"
},
"cpe_match": {
"@container": "@list"
},
"data": {
"@container": "@list"
},
"nodes": {
"@container": "@list"
}
},
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:3s-smart:codesys_gateway_server:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "2.3.9.34",
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"sources": [
{
"db": "NVD",
"id": "CVE-2015-6460"
}
]
},
"credits": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/credits#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Josep Pi Rodriguez",
"sources": [
{
"db": "ZDI",
"id": "ZDI-15-442"
},
{
"db": "ZDI",
"id": "ZDI-15-441"
},
{
"db": "BID",
"id": "76754"
}
],
"trust": 1.7
},
"cve": "CVE-2015-6460",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"acInsufInfo": null,
"accessComplexity": "Low",
"accessVector": "Network",
"authentication": "None",
"author": "NVD",
"availabilityImpact": "Partial",
"baseScore": 7.5,
"confidentialityImpact": "Partial",
"exploitabilityScore": null,
"id": "CVE-2015-6460",
"impactScore": null,
"integrityImpact": "Partial",
"obtainAllPrivilege": null,
"obtainOtherPrivilege": null,
"obtainUserPrivilege": null,
"severity": "High",
"trust": 2.3,
"userInteractionRequired": null,
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
{
"acInsufInfo": false,
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "NVD",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 10.0,
"impactScore": 6.4,
"integrityImpact": "PARTIAL",
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "HIGH",
"trust": 1.0,
"userInteractionRequired": false,
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "CNVD",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 10.0,
"id": "CNVD-2015-06220",
"impactScore": 6.4,
"integrityImpact": "PARTIAL",
"severity": "HIGH",
"trust": 0.6,
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "IVD",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 10.0,
"id": "73900d9c-2351-11e6-abef-000c29c66e3d",
"impactScore": 6.4,
"integrityImpact": "PARTIAL",
"severity": "HIGH",
"trust": 0.2,
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.9 [IVD]"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "VULHUB",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 10.0,
"id": "VHN-84421",
"impactScore": 6.4,
"integrityImpact": "PARTIAL",
"severity": "HIGH",
"trust": 0.1,
"vectorString": "AV:N/AC:L/AU:N/C:P/I:P/A:P",
"version": "2.0"
}
],
"cvssV3": [],
"severity": [
{
"author": "NVD",
"id": "CVE-2015-6460",
"trust": 1.8,
"value": "HIGH"
},
{
"author": "ZDI",
"id": "CVE-2015-6460",
"trust": 1.4,
"value": "HIGH"
},
{
"author": "CNVD",
"id": "CNVD-2015-06220",
"trust": 0.6,
"value": "HIGH"
},
{
"author": "CNNVD",
"id": "CNNVD-201509-256",
"trust": 0.6,
"value": "HIGH"
},
{
"author": "IVD",
"id": "73900d9c-2351-11e6-abef-000c29c66e3d",
"trust": 0.2,
"value": "HIGH"
},
{
"author": "VULHUB",
"id": "VHN-84421",
"trust": 0.1,
"value": "HIGH"
},
{
"author": "VULMON",
"id": "CVE-2015-6460",
"trust": 0.1,
"value": "HIGH"
}
]
}
],
"sources": [
{
"db": "IVD",
"id": "73900d9c-2351-11e6-abef-000c29c66e3d"
},
{
"db": "ZDI",
"id": "ZDI-15-442"
},
{
"db": "ZDI",
"id": "ZDI-15-441"
},
{
"db": "CNVD",
"id": "CNVD-2015-06220"
},
{
"db": "VULHUB",
"id": "VHN-84421"
},
{
"db": "VULMON",
"id": "CVE-2015-6460"
},
{
"db": "JVNDB",
"id": "JVNDB-2015-004927"
},
{
"db": "NVD",
"id": "CVE-2015-6460"
},
{
"db": "CNNVD",
"id": "CNNVD-201509-256"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Multiple heap-based buffer overflows in 3S-Smart CODESYS Gateway Server before 2.3.9.34 allow remote attackers to execute arbitrary code via opcode (1) 0x3ef or (2) 0x3f0. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of the 0x3ef opcode. An attacker can leverage this vulnerability to execute code under the context of the process. 3S-Smart Software Solutions CoDeSys is a PLC (programmable controller) software programming tool from 3S-Smart Software Solutions, Germany. The CODESYS Gateway Server is one of the CODESYS gateway servers. Failed attacks will cause denial-of-service conditions. Runtime Toolkit is the runtime toolkit of CoDeSys",
"sources": [
{
"db": "NVD",
"id": "CVE-2015-6460"
},
{
"db": "JVNDB",
"id": "JVNDB-2015-004927"
},
{
"db": "ZDI",
"id": "ZDI-15-442"
},
{
"db": "ZDI",
"id": "ZDI-15-441"
},
{
"db": "CNVD",
"id": "CNVD-2015-06220"
},
{
"db": "BID",
"id": "76754"
},
{
"db": "IVD",
"id": "73900d9c-2351-11e6-abef-000c29c66e3d"
},
{
"db": "VULHUB",
"id": "VHN-84421"
},
{
"db": "VULMON",
"id": "CVE-2015-6460"
}
],
"trust": 4.05
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "NVD",
"id": "CVE-2015-6460",
"trust": 5.1
},
{
"db": "ZDI",
"id": "ZDI-15-441",
"trust": 3.4
},
{
"db": "ICS CERT",
"id": "ICSA-15-258-02",
"trust": 2.9
},
{
"db": "ZDI",
"id": "ZDI-15-442",
"trust": 2.8
},
{
"db": "CNNVD",
"id": "CNNVD-201509-256",
"trust": 0.9
},
{
"db": "CNVD",
"id": "CNVD-2015-06220",
"trust": 0.8
},
{
"db": "JVNDB",
"id": "JVNDB-2015-004927",
"trust": 0.8
},
{
"db": "ZDI_CAN",
"id": "ZDI-CAN-2786",
"trust": 0.7
},
{
"db": "ZDI_CAN",
"id": "ZDI-CAN-2785",
"trust": 0.7
},
{
"db": "BID",
"id": "76754",
"trust": 0.5
},
{
"db": "IVD",
"id": "73900D9C-2351-11E6-ABEF-000C29C66E3D",
"trust": 0.2
},
{
"db": "VULHUB",
"id": "VHN-84421",
"trust": 0.1
},
{
"db": "VULMON",
"id": "CVE-2015-6460",
"trust": 0.1
}
],
"sources": [
{
"db": "IVD",
"id": "73900d9c-2351-11e6-abef-000c29c66e3d"
},
{
"db": "ZDI",
"id": "ZDI-15-442"
},
{
"db": "ZDI",
"id": "ZDI-15-441"
},
{
"db": "CNVD",
"id": "CNVD-2015-06220"
},
{
"db": "VULHUB",
"id": "VHN-84421"
},
{
"db": "VULMON",
"id": "CVE-2015-6460"
},
{
"db": "BID",
"id": "76754"
},
{
"db": "JVNDB",
"id": "JVNDB-2015-004927"
},
{
"db": "NVD",
"id": "CVE-2015-6460"
},
{
"db": "CNNVD",
"id": "CNNVD-201509-256"
}
]
},
"id": "VAR-201509-0300",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "IVD",
"id": "73900d9c-2351-11e6-abef-000c29c66e3d"
},
{
"db": "CNVD",
"id": "CNVD-2015-06220"
},
{
"db": "VULHUB",
"id": "VHN-84421"
}
],
"trust": 1.9
},
"iot_taxonomy": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"category": [
"ICS",
"Network device"
],
"sub_category": null,
"trust": 0.6
},
{
"category": [
"ICS"
],
"sub_category": null,
"trust": 0.2
}
],
"sources": [
{
"db": "IVD",
"id": "73900d9c-2351-11e6-abef-000c29c66e3d"
},
{
"db": "CNVD",
"id": "CNVD-2015-06220"
}
]
},
"last_update_date": "2023-12-18T12:06:54.646000Z",
"patch": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/patch#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"title": "Codesys has issued an update to correct this vulnerability.",
"trust": 1.4,
"url": "https://ics-cert.us-cert.gov/advisories/icsa-15-258-02"
},
{
"title": "Top Page",
"trust": 0.8,
"url": "https://www.codesys.com/"
},
{
"title": "3S-Smart Software Solutions CODESYS Gateway Server heap buffer overflow vulnerability patch",
"trust": 0.6,
"url": "https://www.cnvd.org.cn/patchinfo/show/64471"
},
{
"title": "SetupCoDeSysV23947",
"trust": 0.6,
"url": "http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=57669"
},
{
"title": "CoDeSys_v23947",
"trust": 0.6,
"url": "http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=57668"
}
],
"sources": [
{
"db": "ZDI",
"id": "ZDI-15-442"
},
{
"db": "ZDI",
"id": "ZDI-15-441"
},
{
"db": "CNVD",
"id": "CNVD-2015-06220"
},
{
"db": "JVNDB",
"id": "JVNDB-2015-004927"
},
{
"db": "CNNVD",
"id": "CNNVD-201509-256"
}
]
},
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "CWE-119",
"trust": 1.9
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-84421"
},
{
"db": "JVNDB",
"id": "JVNDB-2015-004927"
},
{
"db": "NVD",
"id": "CVE-2015-6460"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 4.3,
"url": "https://ics-cert.us-cert.gov/advisories/icsa-15-258-02"
},
{
"trust": 2.4,
"url": "http://zerodayinitiative.com/advisories/zdi-15-441/"
},
{
"trust": 1.8,
"url": "http://zerodayinitiative.com/advisories/zdi-15-442/"
},
{
"trust": 0.8,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-6460"
},
{
"trust": 0.8,
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2015-6460"
},
{
"trust": 0.6,
"url": "https://us-cert.cisa.gov/ics/advisories/icsa-15-258-02"
},
{
"trust": 0.3,
"url": "http://www.3s-software.com/"
},
{
"trust": 0.3,
"url": "http://www.zerodayinitiative.com/advisories/zdi-15-441/"
},
{
"trust": 0.3,
"url": "http://www.zerodayinitiative.com/advisories/zdi-15-442/"
},
{
"trust": 0.1,
"url": "https://cwe.mitre.org/data/definitions/119.html"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov"
},
{
"trust": 0.1,
"url": "https://www.securityfocus.com/bid/76754"
},
{
"trust": 0.1,
"url": "https://www.cisa.gov/uscert/ics/advisories/icsa-15-258-02"
}
],
"sources": [
{
"db": "ZDI",
"id": "ZDI-15-442"
},
{
"db": "ZDI",
"id": "ZDI-15-441"
},
{
"db": "CNVD",
"id": "CNVD-2015-06220"
},
{
"db": "VULHUB",
"id": "VHN-84421"
},
{
"db": "VULMON",
"id": "CVE-2015-6460"
},
{
"db": "BID",
"id": "76754"
},
{
"db": "JVNDB",
"id": "JVNDB-2015-004927"
},
{
"db": "NVD",
"id": "CVE-2015-6460"
},
{
"db": "CNNVD",
"id": "CNNVD-201509-256"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "IVD",
"id": "73900d9c-2351-11e6-abef-000c29c66e3d"
},
{
"db": "ZDI",
"id": "ZDI-15-442"
},
{
"db": "ZDI",
"id": "ZDI-15-441"
},
{
"db": "CNVD",
"id": "CNVD-2015-06220"
},
{
"db": "VULHUB",
"id": "VHN-84421"
},
{
"db": "VULMON",
"id": "CVE-2015-6460"
},
{
"db": "BID",
"id": "76754"
},
{
"db": "JVNDB",
"id": "JVNDB-2015-004927"
},
{
"db": "NVD",
"id": "CVE-2015-6460"
},
{
"db": "CNNVD",
"id": "CNNVD-201509-256"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2015-09-25T00:00:00",
"db": "IVD",
"id": "73900d9c-2351-11e6-abef-000c29c66e3d"
},
{
"date": "2015-09-16T00:00:00",
"db": "ZDI",
"id": "ZDI-15-442"
},
{
"date": "2015-09-16T00:00:00",
"db": "ZDI",
"id": "ZDI-15-441"
},
{
"date": "2015-09-25T00:00:00",
"db": "CNVD",
"id": "CNVD-2015-06220"
},
{
"date": "2015-09-18T00:00:00",
"db": "VULHUB",
"id": "VHN-84421"
},
{
"date": "2015-09-18T00:00:00",
"db": "VULMON",
"id": "CVE-2015-6460"
},
{
"date": "2015-09-15T00:00:00",
"db": "BID",
"id": "76754"
},
{
"date": "2015-09-29T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2015-004927"
},
{
"date": "2015-09-18T22:59:08.123000",
"db": "NVD",
"id": "CVE-2015-6460"
},
{
"date": "2015-09-18T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201509-256"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2015-09-16T00:00:00",
"db": "ZDI",
"id": "ZDI-15-442"
},
{
"date": "2015-09-16T00:00:00",
"db": "ZDI",
"id": "ZDI-15-441"
},
{
"date": "2015-09-28T00:00:00",
"db": "CNVD",
"id": "CNVD-2015-06220"
},
{
"date": "2022-12-02T00:00:00",
"db": "VULHUB",
"id": "VHN-84421"
},
{
"date": "2022-07-11T00:00:00",
"db": "VULMON",
"id": "CVE-2015-6460"
},
{
"date": "2015-11-03T19:14:00",
"db": "BID",
"id": "76754"
},
{
"date": "2015-09-29T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2015-004927"
},
{
"date": "2022-12-02T22:57:52.647000",
"db": "NVD",
"id": "CVE-2015-6460"
},
{
"date": "2022-07-12T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201509-256"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "remote",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201509-256"
}
],
"trust": 0.6
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "3S-Smart Software Solutions CODESYS Gateway Server Heap Buffer Overflow Vulnerability",
"sources": [
{
"db": "IVD",
"id": "73900d9c-2351-11e6-abef-000c29c66e3d"
},
{
"db": "CNVD",
"id": "CNVD-2015-06220"
}
],
"trust": 0.8
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "buffer error",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201509-256"
}
],
"trust": 0.6
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…