Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Hmi_sl
(Codesys)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 12 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2019-08-15 | CVE-2019-9013 | An issue was discovered in 3S-Smart CODESYS V3 products. The application may utilize non-TLS based encryption, which results in user credentials being insufficiently protected during transport. All variants of the following CODESYS V3 products in all versions containing the CmpUserMgr component are affected regardless of the CPU type or operating system: CODESYS Control for BeagleBone, CODESYS Control for emPC-A/iMX6, CODESYS Control for IOT2000, CODESYS Control for Linux, CODESYS Control... | Control_for_beaglebone_sl, Control_for_empc\-A\/imx6_sl, Control_for_iot2000_sl, Control_for_linux_sl, Control_for_pfc100_sl, Control_for_pfc200_sl, Control_rte_sl, Control_win_sl, Development_system, Hmi_sl, Raspberry_pi, Runtime_toolkit | 8.8 | ||
| 2019-02-19 | CVE-2018-20026 | Improper Communication Address Filtering exists in CODESYS V3 products versions prior V3.5.14.0. | Control_for_beaglebone_sl, Control_for_empc\-A\/imx6_sl, Control_for_iot2000_sl, Control_for_linux_sl, Control_for_pfc100_sl, Control_for_pfc200_sl, Control_for_raspberry_pi_sl, Control_rte_sl, Control_rte_sl_\(For_beckhoff_cx\), Control_runtime_toolkit, Control_win_sl, Development_system_v3, Gateway, Hmi_sl, Opc_server, Plchandler, Safety_sil2, Targetvisu_sl | 7.5 | ||
| 2019-01-29 | CVE-2018-10612 | In 3S-Smart Software Solutions GmbH CODESYS Control V3 products prior to version 3.5.14.0, user access management and communication encryption is not enabled by default, which could allow an attacker access to the device and sensitive information, including user credentials. | Control_for_beaglebone_sl, Control_for_empc\-A\/imx6_sl, Control_for_iot2000_sl, Control_for_linux_sl, Control_for_pfc100_sl, Control_for_pfc200_sl, Control_for_raspberry_pi_sl, Control_rte_sl, Control_runtime_toolkit, Control_win_sl, Development_system_v3, Hmi_sl | 9.8 | ||
| 2019-02-19 | CVE-2018-20025 | Use of Insufficiently Random Values exists in CODESYS V3 products versions prior V3.5.14.0. | Control_for_beaglebone_sl, Control_for_empc\-A\/imx6_sl, Control_for_iot2000_sl, Control_for_linux_sl, Control_for_pfc100_sl, Control_for_pfc200_sl, Control_for_raspberry_pi_sl, Control_rte_sl, Control_rte_sl_\(For_beckhoff_cx\), Control_runtime_toolkit, Control_win_sl, Development_system, Gateway, Hmi_sl, Safety_sil2 | 7.5 |