VDB
CVE-2022-31803
CVE-2022-31803
PUBLISHED
CVSS 5.300000190734863 MEDIUM
In CODESYS Gateway Server V2 an insufficient check for the activity of TCP client connections allows an unauthenticated attacker to consume all available TCP connections and prevent legitimate users or clients from establishing a new connection to the CODESYS Gateway Server V2. Existing connections are not affected and therefore remain intact.
EPSS 0.35% · 57.9th percentile
Risk Scores
CVSS 3.1
5.300000190734863
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
EPSS Score
0.35%
57.9th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| CODESYS | CODESYS Gateway Server V2 | V2 |
| codesys | gateway | 2.0 |
Timeline
- Jun 24, 2022 CVE Published
- Jun 25, 2022 EPSS Score
- Aug 13, 2022 EPSS Score
- Sep 29, 2022 EPSS Score
- Nov 16, 2022 EPSS Score
- Jan 3, 2023 EPSS Score
- Feb 20, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 8, 2023 EPSS Score
- May 26, 2023 EPSS Score
- Jul 13, 2023 EPSS Score
- Aug 30, 2023 EPSS Score