CVE-2018-5440

CVE-2018-5440

Vendor N/A
Product 3S-Smart Software Solutions GmbH CODESYS Web Server
Weakness CWE-121
Published February 15, 2018
Last update August 5, 2024

CVSS base score

What the vulnerability does

01Description

A Stack-based Buffer Overflow issue was discovered in 3S-Smart CODESYS Web Server. Specifically: all Microsoft Windows (also WinCE) based CODESYS web servers running stand-alone Version 2.3, or as part of the CODESYS runtime system running prior to Version V1.1.9.19. A crafted request may cause a buffer overflow and could therefore execute arbitrary code on the web server or lead to a denial-of-service condition due to a crash in the web server.

Key dates

02Disclosure timeline

February 15, 2018 CVE published
August 5, 2024 Record updated