CVE-2021-34586 — Vulnetix

Try Vulnetix Request Demo

CVE-2021-34586 PUBLISHED CVSS 7.5 HIGH

In the CODESYS V2 web server prior to V1.1.9.22 crafted web server requests may cause a Null pointer dereference in the CODESYS web server and may result in a denial-of-service condition.

EPSS 0.46% · 63.9th percentile

Risk Scores

CVSS v3.1

7.5

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS Score

0.46%

63.9th percentile

Affected Products

Vendor	Product	Versions
wago	750-893_firmware	0
wago	750-8214_firmware	0
wago	750-8203_firmware	0
wago	750-885_firmware	0
wago	750-8207_firmware	0
wago	750-831_firmware	0
wago	750-891_firmware	0
wago	750-882_firmware	0
wago	750-8204_firmware	0
wago	750-8206_firmware	0
wago	750-832_firmware	0
codesys	codesys	0
wago	750-8213_firmware	0
wago	750-890_firmware	0
wago	750-8216_firmware	0
wago	750-8210_firmware	0
wago	750-862_firmware	0
wago	750-881_firmware	0
wago	750-880_firmware	0
wago	750-823_firmware	0

…and 9 more

Timeline

Oct 26, 2021 CVE Published
Oct 27, 2021 EPSS Score
Dec 21, 2021 EPSS Score
Feb 4, 2022 EPSS Score
Feb 15, 2022 EPSS Score
Apr 11, 2022 EPSS Score
Jun 6, 2022 EPSS Score
Aug 1, 2022 EPSS Score
Nov 20, 2022 EPSS Score
Jan 15, 2023 EPSS Score
Mar 7, 2023 EPSS Score
May 5, 2023 EPSS Score

References

Open in Interactive Console →