CVE-2021-33485

CODESYS Control Runtime system before 3.5.17.10 has a Heap-based Buffer Overflow.

critical 9.8 CVSS 3.1
Published: Aug 3, 2021
Modified: May 29, 2026
Vendor: Codesys
Product: Control

Description

CODESYS Control Runtime system before 3.5.17.10 has a Heap-based Buffer Overflow.

References

Related CVEs

CVE-2026-44469 high · 7.8
The affected product extracts installation files to a temporary directory with incorrect default permissions during administrative installation. A low-privileged local attacker can
CVE-2026-44468 high · 7.8
The affected product creates a directory with insecure default permissions during administrative installation. This allows a low-privileged local attacker to modify a temporary fil
CVE-2021-29241 high · 7.5
CODESYS Gateway 3 before 3.5.16.70 has a NULL pointer dereference that may result in a denial of service (DoS).