Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2022-47391 (GCVE-0-2022-47391)
Vulnerability from cvelistv5 – Published: 2023-05-15 09:59 – Updated: 2025-01-23 19:19
VLAI
EPSS
Title
CODESYS: Multiple products prone to Improper Input Validation
Summary
In multiple CODESYS products in multiple versions an unauthorized, remote attacker may use a improper input validation vulnerability to read from invalid addresses leading to a denial of service.
Severity
7.5 (High)
CWE
- CWE-20 - Improper Input Validation
Assigner
References
1 reference
Impacted products
20 products
| Vendor | Product | Version | |
|---|---|---|---|
| CODESYS | CODESYS Control RTE (SL) |
Affected:
V0.0.0.0 , < V3.5.19.0
(semver)
|
|
| CODESYS | CODESYS Control RTE (for Beckhoff CX) SL |
Affected:
V0.0.0.0 , < V3.5.19.0
(semver)
|
|
| CODESYS | CODESYS Control Win (SL) |
Affected:
V0.0.0.0 , < V3.5.19.0
(semver)
|
|
| CODESYS | CODESYS Control Runtime System Toolkit |
Affected:
V0.0.0.0 , < V3.5.19.0
(semver)
|
|
| CODESYS | CODESYS Safety SIL2 Runtime Toolkit |
Affected:
V0.0.0.0 , < V3.5.19.0
(semver)
|
|
| CODESYS | CODESYS Safety SIL2 PSP |
Affected:
V0.0.0.0 , < V3.5.19.0
(semver)
|
|
| CODESYS | CODESYS Edge Gateway for Windows |
Affected:
V0.0.0.0 , < V3.5.19.0
(semver)
|
|
| CODESYS | CODESYS Gateway |
Affected:
V0.0.0.0 , < V3.5.19.0
(semver)
|
|
| CODESYS | CODESYS HMI (SL) |
Affected:
V0.0.0.0 , < V3.5.19.0
(semver)
|
|
| CODESYS | CODESYS Development System V3 |
Affected:
V0.0.0.0 , < V3.5.19.0
(semver)
|
|
| CODESYS | CODESYS Control for BeagleBone SL |
Affected:
V0.0.0.0 , < V4.8.0.0
(semver)
|
|
| CODESYS | CODESYS Control for emPC-A/iMX6 SL |
Affected:
V0.0.0.0 , < V4.8.0.0
(semver)
|
|
| CODESYS | CODESYS Control for IOT2000 SL |
Affected:
V0.0.0.0 , < V4.8.0.0
(semver)
|
|
| CODESYS | CODESYS Control for Linux SL |
Affected:
V0.0.0.0 , < V4.8.0.0
(semver)
|
|
| CODESYS | CODESYS Control for PFC100 SL |
Affected:
V0.0.0.0 , < V4.8.0.0
(semver)
|
|
| CODESYS | CODESYS Control for PFC200 SL |
Affected:
V0.0.0.0 , < V4.8.0.0
(semver)
|
|
| CODESYS | CODESYS Control for PLCnext SL |
Affected:
V0.0.0.0 , < V4.8.0.0
(semver)
|
|
| CODESYS | CODESYS Control for Raspberry Pi SL |
Affected:
V0.0.0.0 , < V4.8.0.0
(semver)
|
|
| CODESYS | CODESYS Control for WAGO Touch Panels 600 SL |
Affected:
V0.0.0.0 , < V4.8.0.0
(semver)
|
|
| CODESYS | CODESYS Edge Gateway for Linux |
Affected:
V0.0.0.0 , < V4.8.0.0
(semver)
|
Credits
Vladimir Tokarev, Microsoft
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T14:55:07.901Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://customers.codesys.com/index.php?eID=dumpFile\u0026t=f\u0026f=17555\u0026token=212fc7e39bdd260cab6d6ca84333d42f50bcb3da\u0026download="
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2022-47391",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-01-23T19:18:44.576335Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-01-23T19:19:22.826Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"modules": [
"CmpDevice"
],
"product": "CODESYS Control RTE (SL)",
"vendor": "CODESYS",
"versions": [
{
"lessThan": "V3.5.19.0",
"status": "affected",
"version": "V0.0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"modules": [
"CmpDevice"
],
"product": "CODESYS Control RTE (for Beckhoff CX) SL",
"vendor": "CODESYS",
"versions": [
{
"lessThan": "V3.5.19.0",
"status": "affected",
"version": "V0.0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"modules": [
"CmpDevice"
],
"product": "CODESYS Control Win (SL)",
"vendor": "CODESYS",
"versions": [
{
"lessThan": "V3.5.19.0",
"status": "affected",
"version": "V0.0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"modules": [
"CmpDevice"
],
"product": "CODESYS Control Runtime System Toolkit",
"vendor": "CODESYS",
"versions": [
{
"lessThan": "V3.5.19.0",
"status": "affected",
"version": "V0.0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"modules": [
"CmpDevice"
],
"product": "CODESYS Safety SIL2 Runtime Toolkit",
"vendor": "CODESYS",
"versions": [
{
"lessThan": "V3.5.19.0",
"status": "affected",
"version": "V0.0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"modules": [
"CmpDevice"
],
"product": "CODESYS Safety SIL2 PSP",
"vendor": "CODESYS",
"versions": [
{
"lessThan": "V3.5.19.0",
"status": "affected",
"version": "V0.0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"modules": [
"CmpDevice"
],
"product": "CODESYS Edge Gateway for Windows",
"vendor": "CODESYS",
"versions": [
{
"lessThan": "V3.5.19.0",
"status": "affected",
"version": "V0.0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"modules": [
"CmpDevice"
],
"product": "CODESYS Gateway",
"vendor": "CODESYS",
"versions": [
{
"lessThan": "V3.5.19.0",
"status": "affected",
"version": "V0.0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"modules": [
"CmpDevice"
],
"product": "CODESYS HMI (SL)",
"vendor": "CODESYS",
"versions": [
{
"lessThan": "V3.5.19.0",
"status": "affected",
"version": "V0.0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"modules": [
"CmpDevice"
],
"product": "CODESYS Development System V3",
"vendor": "CODESYS",
"versions": [
{
"lessThan": "V3.5.19.0",
"status": "affected",
"version": "V0.0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "CODESYS Control for BeagleBone SL",
"vendor": "CODESYS",
"versions": [
{
"lessThan": "V4.8.0.0",
"status": "affected",
"version": "V0.0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "CODESYS Control for emPC-A/iMX6 SL",
"vendor": "CODESYS",
"versions": [
{
"lessThan": "V4.8.0.0",
"status": "affected",
"version": "V0.0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "CODESYS Control for IOT2000 SL",
"vendor": "CODESYS",
"versions": [
{
"lessThan": "V4.8.0.0",
"status": "affected",
"version": "V0.0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "CODESYS Control for Linux SL",
"vendor": "CODESYS",
"versions": [
{
"lessThan": "V4.8.0.0",
"status": "affected",
"version": "V0.0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "CODESYS Control for PFC100 SL",
"vendor": "CODESYS",
"versions": [
{
"lessThan": "V4.8.0.0",
"status": "affected",
"version": "V0.0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "CODESYS Control for PFC200 SL",
"vendor": "CODESYS",
"versions": [
{
"lessThan": "V4.8.0.0",
"status": "affected",
"version": "V0.0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "CODESYS Control for PLCnext SL",
"vendor": "CODESYS",
"versions": [
{
"lessThan": "V4.8.0.0",
"status": "affected",
"version": "V0.0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "CODESYS Control for Raspberry Pi SL",
"vendor": "CODESYS",
"versions": [
{
"lessThan": "V4.8.0.0",
"status": "affected",
"version": "V0.0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "CODESYS Control for WAGO Touch Panels 600 SL",
"vendor": "CODESYS",
"versions": [
{
"lessThan": "V4.8.0.0",
"status": "affected",
"version": "V0.0.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "CODESYS Edge Gateway for Linux",
"vendor": "CODESYS",
"versions": [
{
"lessThan": "V4.8.0.0",
"status": "affected",
"version": "V0.0.0.0",
"versionType": "semver"
}
]
}
],
"credits": [
{
"lang": "en",
"type": "finder",
"user": "00000000-0000-4000-9000-000000000000",
"value": "Vladimir Tokarev, Microsoft"
}
],
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "In multiple CODESYS products in multiple versions an unauthorized, remote attacker may use a improper input validation vulnerability to read from invalid addresses leading to a denial of service."
}
],
"value": "In multiple CODESYS products in multiple versions an unauthorized, remote attacker may use a improper input validation vulnerability to read from invalid addresses leading to a denial of service."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-20",
"description": "CWE-20 Improper Input Validation",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2023-05-15T09:59:52.803Z",
"orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
"shortName": "CERTVDE"
},
"references": [
{
"url": "https://customers.codesys.com/index.php?eID=dumpFile\u0026t=f\u0026f=17555\u0026token=212fc7e39bdd260cab6d6ca84333d42f50bcb3da\u0026download="
}
],
"source": {
"discovery": "EXTERNAL"
},
"title": "CODESYS: Multiple products prone to Improper Input Validation",
"x_generator": {
"engine": "Vulnogram 0.1.0-dev"
}
}
},
"cveMetadata": {
"assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
"assignerShortName": "CERTVDE",
"cveId": "CVE-2022-47391",
"datePublished": "2023-05-15T09:59:52.803Z",
"dateReserved": "2022-12-14T06:03:27.265Z",
"dateUpdated": "2025-01-23T19:19:22.826Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2022-47391",
"date": "2026-05-30",
"epss": "0.00433",
"percentile": "0.63027"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2022-47391\",\"sourceIdentifier\":\"info@cert.vde.com\",\"published\":\"2023-05-15T10:15:10.390\",\"lastModified\":\"2025-07-17T13:10:20.353\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"In multiple CODESYS products in multiple versions an unauthorized, remote attacker may use a improper input validation vulnerability to read from invalid addresses leading to a denial of service.\"},{\"lang\":\"es\",\"value\":\"En varios productos CODESYS en m\u00faltiples versiones, un atacante remoto no autorizado puede usar una vulnerabilidad de validaci\u00f3n de entrada incorrecta para leer direcciones no v\u00e1lidas, lo que provoca una denegaci\u00f3n de servicio.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"info@cert.vde.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"info@cert.vde.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-20\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:codesys:control_for_beaglebone_sl:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"4.8.0.0\",\"matchCriteriaId\":\"D2A50DA7-2372-470C-A4DD-29837A4D428A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:codesys:control_for_empc-a\\\\/imx6_sl:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"4.8.0.0\",\"matchCriteriaId\":\"0ADC5883-5087-45E0-95E2-3D414C6417DF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:codesys:control_for_iot2000_sl:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"4.8.0.0\",\"matchCriteriaId\":\"7178B980-82CC-4A30-B278-A4D1F319D678\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:codesys:control_for_linux_sl:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"4.8.0.0\",\"matchCriteriaId\":\"8AFD0474-DCBC-4F9E-BE1B-7BDCCB9D801F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:codesys:control_for_pfc100_sl:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"4.8.0.0\",\"matchCriteriaId\":\"61D99F13-9297-4812-90AD-3EB43276D344\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:codesys:control_for_pfc200_sl:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"4.8.0.0\",\"matchCriteriaId\":\"E5F2E302-39C1-4674-A2BE-A6D1D761B4E2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:codesys:control_for_plcnext_sl:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"4.8.0.0\",\"matchCriteriaId\":\"FF8FBED1-D729-4E07-A644-70D8FC87E965\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:codesys:control_for_raspberry_pi_sl:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"4.8.0.0\",\"matchCriteriaId\":\"00EF8A8D-8A5F-4E7B-A14A-BFEE3297E3B5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:codesys:control_for_wago_touch_panels_600_sl:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"4.8.0.0\",\"matchCriteriaId\":\"2AA9F089-875B-4A90-A818-1BD06602D7E4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:codesys:control_rte_\\\\(for_beckhoff_cx\\\\)_sl:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"3.5.19.0\",\"matchCriteriaId\":\"F1A18AA8-CDF4-4664-906F-76060AFED925\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:codesys:control_rte_\\\\(sl\\\\):*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"3.5.19.0\",\"matchCriteriaId\":\"725E570C-6F46-4526-90B5-F4CAF70A7688\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:codesys:control_runtime_system_toolkit:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"3.5.19.0\",\"matchCriteriaId\":\"AD993BD6-B52E-4BA7-A7D7-A0EBE7FDEDEF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:codesys:control_win_\\\\(sl\\\\):*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"3.5.19.0\",\"matchCriteriaId\":\"FBA9CDA8-4FA0-4258-B477-D2C8DBDD8B2F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:codesys:development_system_v3:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"3.5.19.0\",\"matchCriteriaId\":\"FC41CB40-21CD-4621-9B23-9BF8E0AE93E3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:codesys:hmi_\\\\(sl\\\\):*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"3.5.19.0\",\"matchCriteriaId\":\"C664BC1C-889F-4A54-8E81-AB60B0D4D93B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:codesys:safety_sil2_psp:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"3.5.19.0\",\"matchCriteriaId\":\"49220E0D-3DD6-492B-BD58-C4951D7D2B75\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:codesys:safety_sil2_runtime_toolkit:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"3.5.19.0\",\"matchCriteriaId\":\"DDF04E45-90A5-47FB-8101-9A56BD4F9C3F\"}]}]}],\"references\":[{\"url\":\"https://customers.codesys.com/index.php?eID=dumpFile\u0026t=f\u0026f=17555\u0026token=212fc7e39bdd260cab6d6ca84333d42f50bcb3da\u0026download=\",\"source\":\"info@cert.vde.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://customers.codesys.com/index.php?eID=dumpFile\u0026t=f\u0026f=17555\u0026token=212fc7e39bdd260cab6d6ca84333d42f50bcb3da\u0026download=\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://customers.codesys.com/index.php?eID=dumpFile\u0026t=f\u0026f=17555\u0026token=212fc7e39bdd260cab6d6ca84333d42f50bcb3da\u0026download=\", \"tags\": [\"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-03T14:55:07.901Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2022-47391\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"yes\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-01-23T19:18:44.576335Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-01-23T19:18:27.483Z\"}}], \"cna\": {\"title\": \"CODESYS: Multiple products prone to Improper Input Validation\", \"source\": {\"discovery\": \"EXTERNAL\"}, \"credits\": [{\"lang\": \"en\", \"type\": \"finder\", \"user\": \"00000000-0000-4000-9000-000000000000\", \"value\": \"Vladimir Tokarev, Microsoft\"}], \"metrics\": [{\"format\": \"CVSS\", \"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 7.5, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"NONE\"}, \"scenarios\": [{\"lang\": \"en\", \"value\": \"GENERAL\"}]}], \"affected\": [{\"vendor\": \"CODESYS\", \"modules\": [\"CmpDevice\"], \"product\": \"CODESYS Control RTE (SL)\", \"versions\": [{\"status\": \"affected\", \"version\": \"V0.0.0.0\", \"lessThan\": \"V3.5.19.0\", \"versionType\": \"semver\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"CODESYS\", \"modules\": [\"CmpDevice\"], \"product\": \"CODESYS Control RTE (for Beckhoff CX) SL\", \"versions\": [{\"status\": \"affected\", \"version\": \"V0.0.0.0\", \"lessThan\": \"V3.5.19.0\", \"versionType\": \"semver\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"CODESYS\", \"modules\": [\"CmpDevice\"], \"product\": \"CODESYS Control Win (SL)\", \"versions\": [{\"status\": \"affected\", \"version\": \"V0.0.0.0\", \"lessThan\": \"V3.5.19.0\", \"versionType\": \"semver\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"CODESYS\", \"modules\": [\"CmpDevice\"], \"product\": \"CODESYS Control Runtime System Toolkit\", \"versions\": [{\"status\": \"affected\", \"version\": \"V0.0.0.0\", \"lessThan\": \"V3.5.19.0\", \"versionType\": \"semver\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"CODESYS\", \"modules\": [\"CmpDevice\"], \"product\": \"CODESYS Safety SIL2 Runtime Toolkit\", \"versions\": [{\"status\": \"affected\", \"version\": \"V0.0.0.0\", \"lessThan\": \"V3.5.19.0\", \"versionType\": \"semver\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"CODESYS\", \"modules\": [\"CmpDevice\"], \"product\": \"CODESYS Safety SIL2 PSP\", \"versions\": [{\"status\": \"affected\", \"version\": \"V0.0.0.0\", \"lessThan\": \"V3.5.19.0\", \"versionType\": \"semver\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"CODESYS\", \"modules\": [\"CmpDevice\"], \"product\": \"CODESYS Edge Gateway for Windows\", \"versions\": [{\"status\": \"affected\", \"version\": \"V0.0.0.0\", \"lessThan\": \"V3.5.19.0\", \"versionType\": \"semver\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"CODESYS\", \"modules\": [\"CmpDevice\"], \"product\": \"CODESYS Gateway\", \"versions\": [{\"status\": \"affected\", \"version\": \"V0.0.0.0\", \"lessThan\": \"V3.5.19.0\", \"versionType\": \"semver\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"CODESYS\", \"modules\": [\"CmpDevice\"], \"product\": \"CODESYS HMI (SL)\", \"versions\": [{\"status\": \"affected\", \"version\": \"V0.0.0.0\", \"lessThan\": \"V3.5.19.0\", \"versionType\": \"semver\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"CODESYS\", \"modules\": [\"CmpDevice\"], \"product\": \"CODESYS Development System V3\", \"versions\": [{\"status\": \"affected\", \"version\": \"V0.0.0.0\", \"lessThan\": \"V3.5.19.0\", \"versionType\": \"semver\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"CODESYS\", \"product\": \"CODESYS Control for BeagleBone SL\", \"versions\": [{\"status\": \"affected\", \"version\": \"V0.0.0.0\", \"lessThan\": \"V4.8.0.0\", \"versionType\": \"semver\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"CODESYS\", \"product\": \"CODESYS Control for emPC-A/iMX6 SL\", \"versions\": [{\"status\": \"affected\", \"version\": \"V0.0.0.0\", \"lessThan\": \"V4.8.0.0\", \"versionType\": \"semver\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"CODESYS\", \"product\": \"CODESYS Control for IOT2000 SL\", \"versions\": [{\"status\": \"affected\", \"version\": \"V0.0.0.0\", \"lessThan\": \"V4.8.0.0\", \"versionType\": \"semver\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"CODESYS\", \"product\": \"CODESYS Control for Linux SL\", \"versions\": [{\"status\": \"affected\", \"version\": \"V0.0.0.0\", \"lessThan\": \"V4.8.0.0\", \"versionType\": \"semver\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"CODESYS\", \"product\": \"CODESYS Control for PFC100 SL\", \"versions\": [{\"status\": \"affected\", \"version\": \"V0.0.0.0\", \"lessThan\": \"V4.8.0.0\", \"versionType\": \"semver\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"CODESYS\", \"product\": \"CODESYS Control for PFC200 SL\", \"versions\": [{\"status\": \"affected\", \"version\": \"V0.0.0.0\", \"lessThan\": \"V4.8.0.0\", \"versionType\": \"semver\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"CODESYS\", \"product\": \"CODESYS Control for PLCnext SL\", \"versions\": [{\"status\": \"affected\", \"version\": \"V0.0.0.0\", \"lessThan\": \"V4.8.0.0\", \"versionType\": \"semver\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"CODESYS\", \"product\": \"CODESYS Control for Raspberry Pi SL\", \"versions\": [{\"status\": \"affected\", \"version\": \"V0.0.0.0\", \"lessThan\": \"V4.8.0.0\", \"versionType\": \"semver\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"CODESYS\", \"product\": \"CODESYS Control for WAGO Touch Panels 600 SL\", \"versions\": [{\"status\": \"affected\", \"version\": \"V0.0.0.0\", \"lessThan\": \"V4.8.0.0\", \"versionType\": \"semver\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"CODESYS\", \"product\": \"CODESYS Edge Gateway for Linux\", \"versions\": [{\"status\": \"affected\", \"version\": \"V0.0.0.0\", \"lessThan\": \"V4.8.0.0\", \"versionType\": \"semver\"}], \"defaultStatus\": \"unaffected\"}], \"references\": [{\"url\": \"https://customers.codesys.com/index.php?eID=dumpFile\u0026t=f\u0026f=17555\u0026token=212fc7e39bdd260cab6d6ca84333d42f50bcb3da\u0026download=\"}], \"x_generator\": {\"engine\": \"Vulnogram 0.1.0-dev\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"In multiple CODESYS products in multiple versions an unauthorized, remote attacker may use a improper input validation vulnerability to read from invalid addresses leading to a denial of service.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"In multiple CODESYS products in multiple versions an unauthorized, remote attacker may use a improper input validation vulnerability to read from invalid addresses leading to a denial of service.\", \"base64\": false}]}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-20\", \"description\": \"CWE-20 Improper Input Validation\"}]}], \"providerMetadata\": {\"orgId\": \"270ccfa6-a436-4e77-922e-914ec3a9685c\", \"shortName\": \"CERTVDE\", \"dateUpdated\": \"2023-05-15T09:59:52.803Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2022-47391\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-01-23T19:19:22.826Z\", \"dateReserved\": \"2022-12-14T06:03:27.265Z\", \"assignerOrgId\": \"270ccfa6-a436-4e77-922e-914ec3a9685c\", \"datePublished\": \"2023-05-15T09:59:52.803Z\", \"assignerShortName\": \"CERTVDE\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
VDE-2023-026
Vulnerability from csaf_wagogmbhcokg - Published: 2023-07-31 07:36 - Updated: 2025-05-22 13:03Summary
WAGO: Multiple products prone to multiple vulnerabilities in e!Runtime / CODESYS V3 Runtime
Notes
Summary: Multiple WAGO devices are prone to vulnerabilites in the used CODESYS V3 framework.
Impact: Please refer to the official CODESYS Advisories:
• Advisory2023-02_CDS-82683• Advisory2023-03_CDS-84820
Website at https://www.codesys.com/security/security-reports.html
Mitigation: Vulnerabilities of CODESYS Advisory 2023-02:• Please make sure that the 'port authentication' option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.• Please change the default admin password.
Vulnerability of CODESYS Advisory 2023-03:• This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.
In addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:
Use controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.
Use firewalls to protect and separate the control system network from other networks.
Use VPN (Virtual Private Networks) tunnels if remote access is required.
Activate and apply user management and password features.
Use encrypted communication links.
Limit the access to both development and control system by physical means, operating system features, etc.
Protect both development and control system by using up to date virus detection solutions.
For further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html
Remediation: A fixed firmware for affected devices is planned for Q1 2024.
In multiple CODESYS products in multiple versions an unauthorized, remote attacker may use a improper input validation vulnerability to read from invalid addresses leading to a denial of service.
7.5 (High)
Mitigation
Vulnerabilities of CODESYS Advisory 2023-02:• Please make sure that the 'port authentication' option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.• Please change the default admin password.
Vulnerability of CODESYS Advisory 2023-03:• This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.
In addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:
Use controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.
Use firewalls to protect and separate the control system network from other networks.
Use VPN (Virtual Private Networks) tunnels if remote access is required.
Activate and apply user management and password features.
Use encrypted communication links.
Limit the access to both development and control system by physical means, operating system features, etc.
Protect both development and control system by using up to date virus detection solutions.
For further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html
Vendor Fix
A fixed firmware for affected devices is planned for Q1 2024.
Affected products
Known affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31001 | — | ||
| Unresolved product id: CSAFPID-31002 | — | ||
| Unresolved product id: CSAFPID-31003 | — | ||
| Unresolved product id: CSAFPID-31004 | — | ||
| Unresolved product id: CSAFPID-31005 | — |
An authenticated, remote attacker may use a Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple versions of multiple CODESYS products to force a denial-of-service situation.
6.5 (Medium)
Mitigation
Vulnerabilities of CODESYS Advisory 2023-02:• Please make sure that the 'port authentication' option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.• Please change the default admin password.
Vulnerability of CODESYS Advisory 2023-03:• This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.
In addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:
Use controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.
Use firewalls to protect and separate the control system network from other networks.
Use VPN (Virtual Private Networks) tunnels if remote access is required.
Activate and apply user management and password features.
Use encrypted communication links.
Limit the access to both development and control system by physical means, operating system features, etc.
Protect both development and control system by using up to date virus detection solutions.
For further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html
Vendor Fix
A fixed firmware for affected devices is planned for Q1 2024.
Affected products
Known affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31001 | — | ||
| Unresolved product id: CSAFPID-31002 | — | ||
| Unresolved product id: CSAFPID-31003 | — | ||
| Unresolved product id: CSAFPID-31004 | — | ||
| Unresolved product id: CSAFPID-31005 | — |
An authenticated, remote attacker may use a improper input validation vulnerability in the CmpApp/CmpAppBP/CmpAppForce Components of multiple CODESYS products in multiple versions to read from an invalid address which can lead to a denial-of-service condition.
6.5 (Medium)
Mitigation
Vulnerabilities of CODESYS Advisory 2023-02:• Please make sure that the 'port authentication' option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.• Please change the default admin password.
Vulnerability of CODESYS Advisory 2023-03:• This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.
In addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:
Use controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.
Use firewalls to protect and separate the control system network from other networks.
Use VPN (Virtual Private Networks) tunnels if remote access is required.
Activate and apply user management and password features.
Use encrypted communication links.
Limit the access to both development and control system by physical means, operating system features, etc.
Protect both development and control system by using up to date virus detection solutions.
For further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html
Vendor Fix
A fixed firmware for affected devices is planned for Q1 2024.
Affected products
Known affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31001 | — | ||
| Unresolved product id: CSAFPID-31002 | — | ||
| Unresolved product id: CSAFPID-31003 | — | ||
| Unresolved product id: CSAFPID-31004 | — | ||
| Unresolved product id: CSAFPID-31005 | — |
An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution.
8.8 (High)
Mitigation
Vulnerabilities of CODESYS Advisory 2023-02:• Please make sure that the 'port authentication' option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.• Please change the default admin password.
Vulnerability of CODESYS Advisory 2023-03:• This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.
In addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:
Use controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.
Use firewalls to protect and separate the control system network from other networks.
Use VPN (Virtual Private Networks) tunnels if remote access is required.
Activate and apply user management and password features.
Use encrypted communication links.
Limit the access to both development and control system by physical means, operating system features, etc.
Protect both development and control system by using up to date virus detection solutions.
For further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html
Vendor Fix
A fixed firmware for affected devices is planned for Q1 2024.
Affected products
Known affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31001 | — | ||
| Unresolved product id: CSAFPID-31002 | — | ||
| Unresolved product id: CSAFPID-31003 | — | ||
| Unresolved product id: CSAFPID-31004 | — | ||
| Unresolved product id: CSAFPID-31005 | — |
An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution.
8.8 (High)
Mitigation
Vulnerabilities of CODESYS Advisory 2023-02:• Please make sure that the 'port authentication' option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.• Please change the default admin password.
Vulnerability of CODESYS Advisory 2023-03:• This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.
In addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:
Use controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.
Use firewalls to protect and separate the control system network from other networks.
Use VPN (Virtual Private Networks) tunnels if remote access is required.
Activate and apply user management and password features.
Use encrypted communication links.
Limit the access to both development and control system by physical means, operating system features, etc.
Protect both development and control system by using up to date virus detection solutions.
For further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html
Vendor Fix
A fixed firmware for affected devices is planned for Q1 2024.
Affected products
Known affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31001 | — | ||
| Unresolved product id: CSAFPID-31002 | — | ||
| Unresolved product id: CSAFPID-31003 | — | ||
| Unresolved product id: CSAFPID-31004 | — | ||
| Unresolved product id: CSAFPID-31005 | — |
An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution.
8.8 (High)
Mitigation
Vulnerabilities of CODESYS Advisory 2023-02:• Please make sure that the 'port authentication' option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.• Please change the default admin password.
Vulnerability of CODESYS Advisory 2023-03:• This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.
In addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:
Use controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.
Use firewalls to protect and separate the control system network from other networks.
Use VPN (Virtual Private Networks) tunnels if remote access is required.
Activate and apply user management and password features.
Use encrypted communication links.
Limit the access to both development and control system by physical means, operating system features, etc.
Protect both development and control system by using up to date virus detection solutions.
For further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html
Vendor Fix
A fixed firmware for affected devices is planned for Q1 2024.
Affected products
Known affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31001 | — | ||
| Unresolved product id: CSAFPID-31002 | — | ||
| Unresolved product id: CSAFPID-31003 | — | ||
| Unresolved product id: CSAFPID-31004 | — | ||
| Unresolved product id: CSAFPID-31005 | — |
An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution.
8.8 (High)
Mitigation
Vulnerabilities of CODESYS Advisory 2023-02:• Please make sure that the 'port authentication' option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.• Please change the default admin password.
Vulnerability of CODESYS Advisory 2023-03:• This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.
In addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:
Use controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.
Use firewalls to protect and separate the control system network from other networks.
Use VPN (Virtual Private Networks) tunnels if remote access is required.
Activate and apply user management and password features.
Use encrypted communication links.
Limit the access to both development and control system by physical means, operating system features, etc.
Protect both development and control system by using up to date virus detection solutions.
For further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html
Vendor Fix
A fixed firmware for affected devices is planned for Q1 2024.
Affected products
Known affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31001 | — | ||
| Unresolved product id: CSAFPID-31002 | — | ||
| Unresolved product id: CSAFPID-31003 | — | ||
| Unresolved product id: CSAFPID-31004 | — | ||
| Unresolved product id: CSAFPID-31005 | — |
An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution.
8.8 (High)
Mitigation
Vulnerabilities of CODESYS Advisory 2023-02:• Please make sure that the 'port authentication' option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.• Please change the default admin password.
Vulnerability of CODESYS Advisory 2023-03:• This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.
In addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:
Use controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.
Use firewalls to protect and separate the control system network from other networks.
Use VPN (Virtual Private Networks) tunnels if remote access is required.
Activate and apply user management and password features.
Use encrypted communication links.
Limit the access to both development and control system by physical means, operating system features, etc.
Protect both development and control system by using up to date virus detection solutions.
For further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html
Vendor Fix
A fixed firmware for affected devices is planned for Q1 2024.
Affected products
Known affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31001 | — | ||
| Unresolved product id: CSAFPID-31002 | — | ||
| Unresolved product id: CSAFPID-31003 | — | ||
| Unresolved product id: CSAFPID-31004 | — | ||
| Unresolved product id: CSAFPID-31005 | — |
An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the CmpAppForce Component of multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution.
8.8 (High)
Mitigation
Vulnerabilities of CODESYS Advisory 2023-02:• Please make sure that the 'port authentication' option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.• Please change the default admin password.
Vulnerability of CODESYS Advisory 2023-03:• This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.
In addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:
Use controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.
Use firewalls to protect and separate the control system network from other networks.
Use VPN (Virtual Private Networks) tunnels if remote access is required.
Activate and apply user management and password features.
Use encrypted communication links.
Limit the access to both development and control system by physical means, operating system features, etc.
Protect both development and control system by using up to date virus detection solutions.
For further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html
Vendor Fix
A fixed firmware for affected devices is planned for Q1 2024.
Affected products
Known affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31001 | — | ||
| Unresolved product id: CSAFPID-31002 | — | ||
| Unresolved product id: CSAFPID-31003 | — | ||
| Unresolved product id: CSAFPID-31004 | — | ||
| Unresolved product id: CSAFPID-31005 | — |
An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution.
8.8 (High)
Mitigation
Vulnerabilities of CODESYS Advisory 2023-02:• Please make sure that the 'port authentication' option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.• Please change the default admin password.
Vulnerability of CODESYS Advisory 2023-03:• This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.
In addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:
Use controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.
Use firewalls to protect and separate the control system network from other networks.
Use VPN (Virtual Private Networks) tunnels if remote access is required.
Activate and apply user management and password features.
Use encrypted communication links.
Limit the access to both development and control system by physical means, operating system features, etc.
Protect both development and control system by using up to date virus detection solutions.
For further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html
Vendor Fix
A fixed firmware for affected devices is planned for Q1 2024.
Affected products
Known affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31001 | — | ||
| Unresolved product id: CSAFPID-31002 | — | ||
| Unresolved product id: CSAFPID-31003 | — | ||
| Unresolved product id: CSAFPID-31004 | — | ||
| Unresolved product id: CSAFPID-31005 | — |
An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution.
8.8 (High)
Mitigation
Vulnerabilities of CODESYS Advisory 2023-02:• Please make sure that the 'port authentication' option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.• Please change the default admin password.
Vulnerability of CODESYS Advisory 2023-03:• This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.
In addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:
Use controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.
Use firewalls to protect and separate the control system network from other networks.
Use VPN (Virtual Private Networks) tunnels if remote access is required.
Activate and apply user management and password features.
Use encrypted communication links.
Limit the access to both development and control system by physical means, operating system features, etc.
Protect both development and control system by using up to date virus detection solutions.
For further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html
Vendor Fix
A fixed firmware for affected devices is planned for Q1 2024.
Affected products
Known affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31001 | — | ||
| Unresolved product id: CSAFPID-31002 | — | ||
| Unresolved product id: CSAFPID-31003 | — | ||
| Unresolved product id: CSAFPID-31004 | — | ||
| Unresolved product id: CSAFPID-31005 | — |
An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution.
8.8 (High)
Mitigation
Vulnerabilities of CODESYS Advisory 2023-02:• Please make sure that the 'port authentication' option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.• Please change the default admin password.
Vulnerability of CODESYS Advisory 2023-03:• This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.
In addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:
Use controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.
Use firewalls to protect and separate the control system network from other networks.
Use VPN (Virtual Private Networks) tunnels if remote access is required.
Activate and apply user management and password features.
Use encrypted communication links.
Limit the access to both development and control system by physical means, operating system features, etc.
Protect both development and control system by using up to date virus detection solutions.
For further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html
Vendor Fix
A fixed firmware for affected devices is planned for Q1 2024.
Affected products
Known affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31001 | — | ||
| Unresolved product id: CSAFPID-31002 | — | ||
| Unresolved product id: CSAFPID-31003 | — | ||
| Unresolved product id: CSAFPID-31004 | — | ||
| Unresolved product id: CSAFPID-31005 | — |
An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution.
8.8 (High)
Mitigation
Vulnerabilities of CODESYS Advisory 2023-02:• Please make sure that the 'port authentication' option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.• Please change the default admin password.
Vulnerability of CODESYS Advisory 2023-03:• This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.
In addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:
Use controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.
Use firewalls to protect and separate the control system network from other networks.
Use VPN (Virtual Private Networks) tunnels if remote access is required.
Activate and apply user management and password features.
Use encrypted communication links.
Limit the access to both development and control system by physical means, operating system features, etc.
Protect both development and control system by using up to date virus detection solutions.
For further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html
Vendor Fix
A fixed firmware for affected devices is planned for Q1 2024.
Affected products
Known affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31001 | — | ||
| Unresolved product id: CSAFPID-31002 | — | ||
| Unresolved product id: CSAFPID-31003 | — | ||
| Unresolved product id: CSAFPID-31004 | — | ||
| Unresolved product id: CSAFPID-31005 | — |
An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution.
8.8 (High)
Mitigation
Vulnerabilities of CODESYS Advisory 2023-02:• Please make sure that the 'port authentication' option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.• Please change the default admin password.
Vulnerability of CODESYS Advisory 2023-03:• This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.
In addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:
Use controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.
Use firewalls to protect and separate the control system network from other networks.
Use VPN (Virtual Private Networks) tunnels if remote access is required.
Activate and apply user management and password features.
Use encrypted communication links.
Limit the access to both development and control system by physical means, operating system features, etc.
Protect both development and control system by using up to date virus detection solutions.
For further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html
Vendor Fix
A fixed firmware for affected devices is planned for Q1 2024.
Affected products
Known affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31001 | — | ||
| Unresolved product id: CSAFPID-31002 | — | ||
| Unresolved product id: CSAFPID-31003 | — | ||
| Unresolved product id: CSAFPID-31004 | — | ||
| Unresolved product id: CSAFPID-31005 | — |
An authenticated, remote attacker may use a out-of-bounds write vulnerability in multiple CODESYS products in multiple versions to write data into memory which can lead to a denial-of-service condition, memory overwriting, or remote code execution.
8.8 (High)
Mitigation
Vulnerabilities of CODESYS Advisory 2023-02:• Please make sure that the 'port authentication' option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.• Please change the default admin password.
Vulnerability of CODESYS Advisory 2023-03:• This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.
In addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:
Use controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.
Use firewalls to protect and separate the control system network from other networks.
Use VPN (Virtual Private Networks) tunnels if remote access is required.
Activate and apply user management and password features.
Use encrypted communication links.
Limit the access to both development and control system by physical means, operating system features, etc.
Protect both development and control system by using up to date virus detection solutions.
For further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html
Vendor Fix
A fixed firmware for affected devices is planned for Q1 2024.
Affected products
Known affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31001 | — | ||
| Unresolved product id: CSAFPID-31002 | — | ||
| Unresolved product id: CSAFPID-31003 | — | ||
| Unresolved product id: CSAFPID-31004 | — | ||
| Unresolved product id: CSAFPID-31005 | — |
Multiple CODESYS products in multiple versions are prone to a improper input validation vulnerability. An authenticated remote attacker may craft specific requests that use the vulnerability leading to a denial-of-service condition.
6.5 (Medium)
Mitigation
Vulnerabilities of CODESYS Advisory 2023-02:• Please make sure that the 'port authentication' option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.• Please change the default admin password.
Vulnerability of CODESYS Advisory 2023-03:• This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.
In addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:
Use controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.
Use firewalls to protect and separate the control system network from other networks.
Use VPN (Virtual Private Networks) tunnels if remote access is required.
Activate and apply user management and password features.
Use encrypted communication links.
Limit the access to both development and control system by physical means, operating system features, etc.
Protect both development and control system by using up to date virus detection solutions.
For further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html
Vendor Fix
A fixed firmware for affected devices is planned for Q1 2024.
Affected products
Known affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31001 | — | ||
| Unresolved product id: CSAFPID-31002 | — | ||
| Unresolved product id: CSAFPID-31003 | — | ||
| Unresolved product id: CSAFPID-31004 | — | ||
| Unresolved product id: CSAFPID-31005 | — |
References
4 references
| URL | Category |
|---|---|
| https://certvde.com/en/advisories/VDE-2023-026/ | self |
| https://wago.csaf-tp.certvde.com/.well-known/csaf… | self |
| https://www.wago.com/psirt | external |
| https://certvde.com/en/advisories/vendor/wago/ | external |
Acknowledgments
CERT@VDE
certvde.com
{
"document": {
"acknowledgments": [
{
"organization": "CERT@VDE",
"summary": "coordination",
"urls": [
"https://certvde.com"
]
}
],
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en-GB",
"notes": [
{
"category": "summary",
"text": "Multiple WAGO devices are prone to vulnerabilites in the used CODESYS V3 framework.",
"title": "Summary"
},
{
"category": "description",
"text": "Please refer to the official CODESYS Advisories:\n\u2022 Advisory2023-02_CDS-82683\u2022 Advisory2023-03_CDS-84820\nWebsite at https://www.codesys.com/security/security-reports.html",
"title": "Impact"
},
{
"category": "description",
"text": "Vulnerabilities of CODESYS Advisory 2023-02:\u2022 Please make sure that the \u0027port authentication\u0027 option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.\u2022 Please change the default admin password.\nVulnerability of CODESYS Advisory 2023-03:\u2022 This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.\nIn addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:\n\nUse controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.\nUse firewalls to protect and separate the control system network from other networks.\nUse VPN (Virtual Private Networks) tunnels if remote access is required.\nActivate and apply user management and password features.\nUse encrypted communication links.\nLimit the access to both development and control system by physical means, operating system features, etc.\nProtect both development and control system by using up to date virus detection solutions.\n\nFor further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html",
"title": "Mitigation"
},
{
"category": "description",
"text": "A fixed firmware for affected devices is planned for Q1 2024.",
"title": "Remediation"
}
],
"publisher": {
"category": "vendor",
"contact_details": "psirt@wago.com",
"name": "WAGO GmbH \u0026 Co. KG",
"namespace": "https://www.wago.com/psirt"
},
"references": [
{
"category": "self",
"summary": "VDE-2023-026: WAGO: Multiple products prone to multiple vulnerabilities in e!Runtime / CODESYS V3 Runtime - HTML",
"url": "https://certvde.com/en/advisories/VDE-2023-026/"
},
{
"category": "self",
"summary": "VDE-2023-026: WAGO: Multiple products prone to multiple vulnerabilities in e!Runtime / CODESYS V3 Runtime - CSAF",
"url": "https://wago.csaf-tp.certvde.com/.well-known/csaf/white/2023/vde-2023-026.json"
},
{
"category": "external",
"summary": "WAGO PSIRT",
"url": "https://www.wago.com/psirt"
},
{
"category": "external",
"summary": "CERT@VDE Security Advisories for WAGO GmbH \u0026 Co. KG",
"url": "https://certvde.com/en/advisories/vendor/wago/"
}
],
"title": "WAGO: Multiple products prone to multiple vulnerabilities in e!Runtime / CODESYS V3 Runtime",
"tracking": {
"aliases": [
"VDE-2023-026"
],
"current_release_date": "2025-05-22T13:03:10.000Z",
"generator": {
"date": "2025-05-05T09:43:46.052Z",
"engine": {
"name": "Secvisogram",
"version": "2.5.24"
}
},
"id": "VDE-2023-026",
"initial_release_date": "2023-07-31T07:36:00.000Z",
"revision_history": [
{
"date": "2023-07-31T07:36:00.000Z",
"number": "1",
"summary": "Initial revision."
},
{
"date": "2025-05-22T13:03:10.000Z",
"number": "2",
"summary": "Fix: quotation mark"
}
],
"status": "final",
"version": "2"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Compact Controller 100",
"product": {
"name": "Compact Controller 100",
"product_id": "CSAFPID-11001",
"product_identification_helper": {
"model_numbers": [
"751-9301/xxx-xxx",
"751-9401/xxx-xxx"
]
}
}
},
{
"category": "product_name",
"name": "EC 300",
"product": {
"name": "EC 300",
"product_id": "CSAFPID-11002",
"product_identification_helper": {
"model_numbers": [
"752-8303/8000-0002"
]
}
}
},
{
"category": "product_name",
"name": "PFC100",
"product": {
"name": "PFC100",
"product_id": "CSAFPID-11003",
"product_identification_helper": {
"model_numbers": [
"750-8101/xxx-xxx",
"750-8102/xxx-xxx",
"750-8100/xxx-xxx"
]
}
}
},
{
"category": "product_name",
"name": "PFC200",
"product": {
"name": "PFC200",
"product_id": "CSAFPID-11004",
"product_identification_helper": {
"model_numbers": [
"750-8202/xxx-xxx",
"750-8204/xxx-xxx",
"750-8206/xxx-xxx",
"750-8207/xxx-xxx",
"750-8210/xxx-xxx",
"750-8211/xxx-xxx",
"750-8212/xxx-xxx",
"750-8213/xxx-xxx",
"750-8214/xxx-xxx",
"750-8215/xxx-xxx",
"750-8216/xxx-xxx",
"750-8217/xxx-xxx",
"750-8203/xxx-xxx"
]
}
}
},
{
"category": "product_name",
"name": "TP 600",
"product": {
"name": "TP 600",
"product_id": "CSAFPID-11005",
"product_identification_helper": {
"model_numbers": [
"762-5x0x/8000-000x",
"762-6x0x/8000-000x",
"762-4x0x/8000-000x"
]
}
}
}
],
"category": "product_family",
"name": "Hardware"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=FW25",
"product": {
"name": "Firmware \u003c= FW25",
"product_id": "CSAFPID-21001"
}
}
],
"category": "product_family",
"name": "Firmware"
}
],
"category": "vendor",
"name": "Wago"
}
],
"product_groups": [
{
"group_id": "CSAFGID-0001",
"product_ids": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003"
],
"summary": "Affected products."
}
],
"relationships": [
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c= FW25 installed on Compact Controller 100",
"product_id": "CSAFPID-31001"
},
"product_reference": "CSAFPID-21001",
"relates_to_product_reference": "CSAFPID-11001"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c= FW25 installed on Compact Controller 100",
"product_id": "CSAFPID-31002"
},
"product_reference": "CSAFPID-21001",
"relates_to_product_reference": "CSAFPID-11002"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c= FW25 installed on EC 300",
"product_id": "CSAFPID-31003"
},
"product_reference": "CSAFPID-21001",
"relates_to_product_reference": "CSAFPID-11003"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c= FW25 installed on PFC100",
"product_id": "CSAFPID-31004"
},
"product_reference": "CSAFPID-21001",
"relates_to_product_reference": "CSAFPID-11004"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c= FW25 installed on PFC100",
"product_id": "CSAFPID-31005"
},
"product_reference": "CSAFPID-21001",
"relates_to_product_reference": "CSAFPID-11005"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2022-47391",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "description",
"text": "In multiple CODESYS products in multiple versions an unauthorized, remote attacker may use a improper input validation vulnerability to read from invalid addresses leading to a denial of service.",
"title": "Vulnerability Description"
}
],
"product_status": {
"known_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "mitigation",
"details": "Vulnerabilities of CODESYS Advisory 2023-02:\u2022 Please make sure that the \u0027port authentication\u0027 option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.\u2022 Please change the default admin password.\nVulnerability of CODESYS Advisory 2023-03:\u2022 This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.\nIn addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:\n\nUse controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.\nUse firewalls to protect and separate the control system network from other networks.\nUse VPN (Virtual Private Networks) tunnels if remote access is required.\nActivate and apply user management and password features.\nUse encrypted communication links.\nLimit the access to both development and control system by physical means, operating system features, etc.\nProtect both development and control system by using up to date virus detection solutions.\n\nFor further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "A fixed firmware for affected devices is planned for Q1 2024.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
}
],
"title": "CVE-2022-47391"
},
{
"cve": "CVE-2022-47393",
"cwe": {
"id": "CWE-119",
"name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
},
"notes": [
{
"category": "description",
"text": "An authenticated, remote attacker may use a Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple versions of multiple CODESYS products to force a denial-of-service situation.",
"title": "Vulnerability Description"
}
],
"product_status": {
"known_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "mitigation",
"details": "Vulnerabilities of CODESYS Advisory 2023-02:\u2022 Please make sure that the \u0027port authentication\u0027 option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.\u2022 Please change the default admin password.\nVulnerability of CODESYS Advisory 2023-03:\u2022 This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.\nIn addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:\n\nUse controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.\nUse firewalls to protect and separate the control system network from other networks.\nUse VPN (Virtual Private Networks) tunnels if remote access is required.\nActivate and apply user management and password features.\nUse encrypted communication links.\nLimit the access to both development and control system by physical means, operating system features, etc.\nProtect both development and control system by using up to date virus detection solutions.\n\nFor further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "A fixed firmware for affected devices is planned for Q1 2024.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 6.5,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 6.5,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
}
],
"title": "CVE-2022-47393"
},
{
"cve": "CVE-2022-47392",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "description",
"text": "An authenticated, remote attacker may use a improper input validation vulnerability in the CmpApp/CmpAppBP/CmpAppForce Components of multiple CODESYS products in multiple versions to read from an invalid address which can lead\u00a0to a denial-of-service condition.",
"title": "Vulnerability Description"
}
],
"product_status": {
"known_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "mitigation",
"details": "Vulnerabilities of CODESYS Advisory 2023-02:\u2022 Please make sure that the \u0027port authentication\u0027 option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.\u2022 Please change the default admin password.\nVulnerability of CODESYS Advisory 2023-03:\u2022 This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.\nIn addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:\n\nUse controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.\nUse firewalls to protect and separate the control system network from other networks.\nUse VPN (Virtual Private Networks) tunnels if remote access is required.\nActivate and apply user management and password features.\nUse encrypted communication links.\nLimit the access to both development and control system by physical means, operating system features, etc.\nProtect both development and control system by using up to date virus detection solutions.\n\nFor further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "A fixed firmware for affected devices is planned for Q1 2024.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 6.5,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 6.5,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
}
],
"title": "CVE-2022-47392"
},
{
"cve": "CVE-2022-47390",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "description",
"text": "An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead\u00a0to a denial-of-service condition, memory overwriting, or remote code execution.",
"title": "Vulnerability Description"
}
],
"product_status": {
"known_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "mitigation",
"details": "Vulnerabilities of CODESYS Advisory 2023-02:\u2022 Please make sure that the \u0027port authentication\u0027 option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.\u2022 Please change the default admin password.\nVulnerability of CODESYS Advisory 2023-03:\u2022 This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.\nIn addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:\n\nUse controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.\nUse firewalls to protect and separate the control system network from other networks.\nUse VPN (Virtual Private Networks) tunnels if remote access is required.\nActivate and apply user management and password features.\nUse encrypted communication links.\nLimit the access to both development and control system by physical means, operating system features, etc.\nProtect both development and control system by using up to date virus detection solutions.\n\nFor further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "A fixed firmware for affected devices is planned for Q1 2024.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 8.8,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 8.8,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
}
],
"title": "CVE-2022-47390"
},
{
"cve": "CVE-2022-47389",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "description",
"text": "An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead\u00a0to a denial-of-service condition, memory overwriting, or remote code execution.",
"title": "Vulnerability Description"
}
],
"product_status": {
"known_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "mitigation",
"details": "Vulnerabilities of CODESYS Advisory 2023-02:\u2022 Please make sure that the \u0027port authentication\u0027 option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.\u2022 Please change the default admin password.\nVulnerability of CODESYS Advisory 2023-03:\u2022 This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.\nIn addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:\n\nUse controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.\nUse firewalls to protect and separate the control system network from other networks.\nUse VPN (Virtual Private Networks) tunnels if remote access is required.\nActivate and apply user management and password features.\nUse encrypted communication links.\nLimit the access to both development and control system by physical means, operating system features, etc.\nProtect both development and control system by using up to date virus detection solutions.\n\nFor further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "A fixed firmware for affected devices is planned for Q1 2024.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 8.8,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 8.8,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
}
],
"title": "CVE-2022-47389"
},
{
"cve": "CVE-2022-47388",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "description",
"text": "An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead\u00a0to a denial-of-service condition, memory overwriting, or remote code execution.",
"title": "Vulnerability Description"
}
],
"product_status": {
"known_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "mitigation",
"details": "Vulnerabilities of CODESYS Advisory 2023-02:\u2022 Please make sure that the \u0027port authentication\u0027 option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.\u2022 Please change the default admin password.\nVulnerability of CODESYS Advisory 2023-03:\u2022 This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.\nIn addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:\n\nUse controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.\nUse firewalls to protect and separate the control system network from other networks.\nUse VPN (Virtual Private Networks) tunnels if remote access is required.\nActivate and apply user management and password features.\nUse encrypted communication links.\nLimit the access to both development and control system by physical means, operating system features, etc.\nProtect both development and control system by using up to date virus detection solutions.\n\nFor further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "A fixed firmware for affected devices is planned for Q1 2024.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 8.8,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 8.8,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
}
],
"title": "CVE-2022-47388"
},
{
"cve": "CVE-2022-47387",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "description",
"text": "An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead\u00a0to a denial-of-service condition, memory overwriting, or remote code execution.",
"title": "Vulnerability Description"
}
],
"product_status": {
"known_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "mitigation",
"details": "Vulnerabilities of CODESYS Advisory 2023-02:\u2022 Please make sure that the \u0027port authentication\u0027 option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.\u2022 Please change the default admin password.\nVulnerability of CODESYS Advisory 2023-03:\u2022 This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.\nIn addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:\n\nUse controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.\nUse firewalls to protect and separate the control system network from other networks.\nUse VPN (Virtual Private Networks) tunnels if remote access is required.\nActivate and apply user management and password features.\nUse encrypted communication links.\nLimit the access to both development and control system by physical means, operating system features, etc.\nProtect both development and control system by using up to date virus detection solutions.\n\nFor further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "A fixed firmware for affected devices is planned for Q1 2024.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 8.8,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 8.8,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
}
],
"title": "CVE-2022-47387"
},
{
"cve": "CVE-2022-47386",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "description",
"text": "An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead\u00a0to a denial-of-service condition, memory overwriting, or remote code execution.",
"title": "Vulnerability Description"
}
],
"product_status": {
"known_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "mitigation",
"details": "Vulnerabilities of CODESYS Advisory 2023-02:\u2022 Please make sure that the \u0027port authentication\u0027 option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.\u2022 Please change the default admin password.\nVulnerability of CODESYS Advisory 2023-03:\u2022 This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.\nIn addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:\n\nUse controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.\nUse firewalls to protect and separate the control system network from other networks.\nUse VPN (Virtual Private Networks) tunnels if remote access is required.\nActivate and apply user management and password features.\nUse encrypted communication links.\nLimit the access to both development and control system by physical means, operating system features, etc.\nProtect both development and control system by using up to date virus detection solutions.\n\nFor further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "A fixed firmware for affected devices is planned for Q1 2024.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 8.8,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 8.8,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
}
],
"title": "CVE-2022-47386"
},
{
"cve": "CVE-2022-47385",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "description",
"text": "An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the CmpAppForce Component of multiple CODESYS products in multiple versions to write data into the stack which can lead\u00a0to a denial-of-service condition, memory overwriting, or remote code execution.",
"title": "Vulnerability Description"
}
],
"product_status": {
"known_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "mitigation",
"details": "Vulnerabilities of CODESYS Advisory 2023-02:\u2022 Please make sure that the \u0027port authentication\u0027 option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.\u2022 Please change the default admin password.\nVulnerability of CODESYS Advisory 2023-03:\u2022 This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.\nIn addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:\n\nUse controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.\nUse firewalls to protect and separate the control system network from other networks.\nUse VPN (Virtual Private Networks) tunnels if remote access is required.\nActivate and apply user management and password features.\nUse encrypted communication links.\nLimit the access to both development and control system by physical means, operating system features, etc.\nProtect both development and control system by using up to date virus detection solutions.\n\nFor further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "A fixed firmware for affected devices is planned for Q1 2024.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 8.8,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 8.8,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
}
],
"title": "CVE-2022-47385"
},
{
"cve": "CVE-2022-47384",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "description",
"text": "An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead\u00a0to a denial-of-service condition, memory overwriting, or remote code execution.",
"title": "Vulnerability Description"
}
],
"product_status": {
"known_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "mitigation",
"details": "Vulnerabilities of CODESYS Advisory 2023-02:\u2022 Please make sure that the \u0027port authentication\u0027 option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.\u2022 Please change the default admin password.\nVulnerability of CODESYS Advisory 2023-03:\u2022 This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.\nIn addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:\n\nUse controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.\nUse firewalls to protect and separate the control system network from other networks.\nUse VPN (Virtual Private Networks) tunnels if remote access is required.\nActivate and apply user management and password features.\nUse encrypted communication links.\nLimit the access to both development and control system by physical means, operating system features, etc.\nProtect both development and control system by using up to date virus detection solutions.\n\nFor further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "A fixed firmware for affected devices is planned for Q1 2024.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 8.8,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 8.8,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
}
],
"title": "CVE-2022-47384"
},
{
"cve": "CVE-2022-47383",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "description",
"text": "An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead\u00a0to a denial-of-service condition, memory overwriting, or remote code execution.",
"title": "Vulnerability Description"
}
],
"product_status": {
"known_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "mitigation",
"details": "Vulnerabilities of CODESYS Advisory 2023-02:\u2022 Please make sure that the \u0027port authentication\u0027 option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.\u2022 Please change the default admin password.\nVulnerability of CODESYS Advisory 2023-03:\u2022 This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.\nIn addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:\n\nUse controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.\nUse firewalls to protect and separate the control system network from other networks.\nUse VPN (Virtual Private Networks) tunnels if remote access is required.\nActivate and apply user management and password features.\nUse encrypted communication links.\nLimit the access to both development and control system by physical means, operating system features, etc.\nProtect both development and control system by using up to date virus detection solutions.\n\nFor further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "A fixed firmware for affected devices is planned for Q1 2024.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 8.8,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 8.8,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
}
],
"title": "CVE-2022-47383"
},
{
"cve": "CVE-2022-47382",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "description",
"text": "An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead\u00a0to a denial-of-service condition, memory overwriting, or remote code execution.",
"title": "Vulnerability Description"
}
],
"product_status": {
"known_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "mitigation",
"details": "Vulnerabilities of CODESYS Advisory 2023-02:\u2022 Please make sure that the \u0027port authentication\u0027 option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.\u2022 Please change the default admin password.\nVulnerability of CODESYS Advisory 2023-03:\u2022 This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.\nIn addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:\n\nUse controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.\nUse firewalls to protect and separate the control system network from other networks.\nUse VPN (Virtual Private Networks) tunnels if remote access is required.\nActivate and apply user management and password features.\nUse encrypted communication links.\nLimit the access to both development and control system by physical means, operating system features, etc.\nProtect both development and control system by using up to date virus detection solutions.\n\nFor further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "A fixed firmware for affected devices is planned for Q1 2024.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 8.8,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 8.8,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
}
],
"title": "CVE-2022-47382"
},
{
"cve": "CVE-2022-47381",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "description",
"text": "An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in multiple CODESYS products in multiple versions to write data into the stack which can lead\u00a0to a denial-of-service condition, memory overwriting, or remote code execution.",
"title": "Vulnerability Description"
}
],
"product_status": {
"known_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "mitigation",
"details": "Vulnerabilities of CODESYS Advisory 2023-02:\u2022 Please make sure that the \u0027port authentication\u0027 option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.\u2022 Please change the default admin password.\nVulnerability of CODESYS Advisory 2023-03:\u2022 This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.\nIn addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:\n\nUse controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.\nUse firewalls to protect and separate the control system network from other networks.\nUse VPN (Virtual Private Networks) tunnels if remote access is required.\nActivate and apply user management and password features.\nUse encrypted communication links.\nLimit the access to both development and control system by physical means, operating system features, etc.\nProtect both development and control system by using up to date virus detection solutions.\n\nFor further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "A fixed firmware for affected devices is planned for Q1 2024.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 8.8,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 8.8,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
}
],
"title": "CVE-2022-47381"
},
{
"cve": "CVE-2022-47380",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "description",
"text": "An authenticated remote attacker may use a stack based\u00a0 out-of-bounds write vulnerability in multiple CODESYS products in multiple versions to write data into the stack which can lead\u00a0to a denial-of-service condition, memory overwriting, or remote code execution.",
"title": "Vulnerability Description"
}
],
"product_status": {
"known_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "mitigation",
"details": "Vulnerabilities of CODESYS Advisory 2023-02:\u2022 Please make sure that the \u0027port authentication\u0027 option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.\u2022 Please change the default admin password.\nVulnerability of CODESYS Advisory 2023-03:\u2022 This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.\nIn addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:\n\nUse controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.\nUse firewalls to protect and separate the control system network from other networks.\nUse VPN (Virtual Private Networks) tunnels if remote access is required.\nActivate and apply user management and password features.\nUse encrypted communication links.\nLimit the access to both development and control system by physical means, operating system features, etc.\nProtect both development and control system by using up to date virus detection solutions.\n\nFor further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "A fixed firmware for affected devices is planned for Q1 2024.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 8.8,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 8.8,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
}
],
"title": "CVE-2022-47380"
},
{
"cve": "CVE-2022-47379",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "description",
"text": "An authenticated, remote attacker may use a out-of-bounds write vulnerability in multiple CODESYS products in multiple versions to write data into memory which can lead\u00a0to a denial-of-service condition, memory overwriting, or remote code execution.",
"title": "Vulnerability Description"
}
],
"product_status": {
"known_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "mitigation",
"details": "Vulnerabilities of CODESYS Advisory 2023-02:\u2022 Please make sure that the \u0027port authentication\u0027 option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.\u2022 Please change the default admin password.\nVulnerability of CODESYS Advisory 2023-03:\u2022 This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.\nIn addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:\n\nUse controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.\nUse firewalls to protect and separate the control system network from other networks.\nUse VPN (Virtual Private Networks) tunnels if remote access is required.\nActivate and apply user management and password features.\nUse encrypted communication links.\nLimit the access to both development and control system by physical means, operating system features, etc.\nProtect both development and control system by using up to date virus detection solutions.\n\nFor further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "A fixed firmware for affected devices is planned for Q1 2024.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 8.8,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 8.8,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
}
],
"title": "CVE-2022-47379"
},
{
"cve": "CVE-2022-47378",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "description",
"text": "Multiple CODESYS products in multiple versions are prone to a improper input validation vulnerability. An authenticated remote attacker may craft specific requests that use the vulnerability leading to a denial-of-service condition.",
"title": "Vulnerability Description"
}
],
"product_status": {
"known_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "mitigation",
"details": "Vulnerabilities of CODESYS Advisory 2023-02:\u2022 Please make sure that the \u0027port authentication\u0027 option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.\u2022 Please change the default admin password.\nVulnerability of CODESYS Advisory 2023-03:\u2022 This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.\nIn addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:\n\nUse controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.\nUse firewalls to protect and separate the control system network from other networks.\nUse VPN (Virtual Private Networks) tunnels if remote access is required.\nActivate and apply user management and password features.\nUse encrypted communication links.\nLimit the access to both development and control system by physical means, operating system features, etc.\nProtect both development and control system by using up to date virus detection solutions.\n\nFor further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "A fixed firmware for affected devices is planned for Q1 2024.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 6.5,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 6.5,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
}
],
"title": "CVE-2022-47378"
}
]
}
VDE-2026-003
Vulnerability from csaf_endresshauserag - Published: 2026-03-31 08:00 - Updated: 2026-04-01 11:00Summary
Endress+Hauser: Multiple products prone to multiple vulnerabilities in e!Runtime and CODESYS V3 Runtime
Severity
High
Notes
Summary: Multiple Endress+Hauser devices are prone to vulnerabilities found in e!Runtime and the CODESYS V3 framework.
Impact: An external attacker could exploit the vulnerabilities to cause denial-of-service, overwrite memory, or execute arbitrary code.
Mitigation: The CDC 90 device is not designed for network connectivity by default. Since it is not connected to a network, the vulnerabilities cannot be exploited. However, if the customer chooses to connect the device to a network, the default firewall settings should be maintained, as this will mitigate the security vulnerabilities.
For the CC 100 and PFC 200 devices, ensure that the default firewall settings remain intact and that both PLC Runtime and PLC WebVisu are disabled. This configuration effectively mitigates the identified security vulnerabilities.
Remediation: Although the CDC 90 device is typically not connected to a network, making exploitation of the vulnerabilities unlikely, Endress+Hauser has provided an update to eliminate the vulnerabilities should the device be connected.
For the CC 100 and PFC 200 devices, Endress+Hauser provides updated firmware that incorporates WAGO's security fixes for the identified vulnerabilities. Customers are advised to update to the latest version
For support, please contact your local service center.
| Product | Fixed Version |
|--------|--------------|
| CC 100 (751-9301) | FW 28 |
| PFC 200 (750-82xx/xxx-xxx) | FW 28 |
| CDC 90 | V3.5.19.0 |
General Recommendation: Endress+Hauser recommends using the solutions only in a secure environment and to allow access to their components only to authorized persons.
Multiple CODESYS products in multiple versions are prone to a improper input validation vulnerability. An authenticated remote attacker may craft specific requests that use the vulnerability leading to a denial-of-service condition.
6.5 (Medium)
Mitigation
The CDC 90 device is not designed for network connectivity by default. Since it is not connected to a network, the vulnerabilities cannot be exploited. However, if the customer chooses to connect the device to a network, the default firewall settings should be maintained, as this will mitigate the security vulnerabilities.
For the CC 100 and PFC 200 devices, ensure that the default firewall settings remain intact and that both PLC Runtime and PLC WebVisu are disabled. This configuration effectively mitigates the identified security vulnerabilities.
Vendor Fix
Although the CDC 90 device is typically not connected to a network, making exploitation of the vulnerabilities unlikely, Endress+Hauser has provided an update to eliminate the vulnerabilities should the device be connected.
For the CC 100 and PFC 200 devices, Endress+Hauser provides updated firmware that incorporates WAGO's security fixes for the identified vulnerabilities. Customers are advised to update to the latest version.
Affected products
Fixed
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-32001 | — | ||
| Unresolved product id: CSAFPID-32002 | — | ||
| Unresolved product id: CSAFPID-32003 | — |
Known affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31001 | — | ||
| Unresolved product id: CSAFPID-31002 | — | ||
| Unresolved product id: CSAFPID-31003 | — | ||
| Unresolved product id: CSAFPID-31004 | — | ||
| Unresolved product id: CSAFPID-31005 | — | ||
| Unresolved product id: CSAFPID-31006 | — |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31001 | — | ||
| Unresolved product id: CSAFPID-31002 | — | ||
| Unresolved product id: CSAFPID-31005 | — |
An authenticated, remote attacker may use a out-of-bounds write vulnerability in multiple CODESYS products in multiple versions to write data into memory which can lead to a denial-of-service condition, memory overwriting, or remote code execution.
8.8 (High)
Mitigation
The CDC 90 device is not designed for network connectivity by default. Since it is not connected to a network, the vulnerabilities cannot be exploited. However, if the customer chooses to connect the device to a network, the default firewall settings should be maintained, as this will mitigate the security vulnerabilities.
For the CC 100 and PFC 200 devices, ensure that the default firewall settings remain intact and that both PLC Runtime and PLC WebVisu are disabled. This configuration effectively mitigates the identified security vulnerabilities.
Vendor Fix
Although the CDC 90 device is typically not connected to a network, making exploitation of the vulnerabilities unlikely, Endress+Hauser has provided an update to eliminate the vulnerabilities should the device be connected.
For the CC 100 and PFC 200 devices, Endress+Hauser provides updated firmware that incorporates WAGO's security fixes for the identified vulnerabilities. Customers are advised to update to the latest version.
Affected products
Fixed
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-32001 | — | ||
| Unresolved product id: CSAFPID-32002 | — | ||
| Unresolved product id: CSAFPID-32003 | — |
Known affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31001 | — | ||
| Unresolved product id: CSAFPID-31002 | — | ||
| Unresolved product id: CSAFPID-31003 | — | ||
| Unresolved product id: CSAFPID-31004 | — | ||
| Unresolved product id: CSAFPID-31005 | — | ||
| Unresolved product id: CSAFPID-31006 | — |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31001 | — | ||
| Unresolved product id: CSAFPID-31002 | — | ||
| Unresolved product id: CSAFPID-31005 | — |
An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution.
8.8 (High)
Mitigation
The CDC 90 device is not designed for network connectivity by default. Since it is not connected to a network, the vulnerabilities cannot be exploited. However, if the customer chooses to connect the device to a network, the default firewall settings should be maintained, as this will mitigate the security vulnerabilities.
For the CC 100 and PFC 200 devices, ensure that the default firewall settings remain intact and that both PLC Runtime and PLC WebVisu are disabled. This configuration effectively mitigates the identified security vulnerabilities.
Vendor Fix
Although the CDC 90 device is typically not connected to a network, making exploitation of the vulnerabilities unlikely, Endress+Hauser has provided an update to eliminate the vulnerabilities should the device be connected.
For the CC 100 and PFC 200 devices, Endress+Hauser provides updated firmware that incorporates WAGO's security fixes for the identified vulnerabilities. Customers are advised to update to the latest version.
Affected products
Fixed
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-32001 | — | ||
| Unresolved product id: CSAFPID-32002 | — | ||
| Unresolved product id: CSAFPID-32003 | — |
Known affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31001 | — | ||
| Unresolved product id: CSAFPID-31002 | — | ||
| Unresolved product id: CSAFPID-31003 | — | ||
| Unresolved product id: CSAFPID-31004 | — | ||
| Unresolved product id: CSAFPID-31005 | — | ||
| Unresolved product id: CSAFPID-31006 | — |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31001 | — | ||
| Unresolved product id: CSAFPID-31002 | — | ||
| Unresolved product id: CSAFPID-31005 | — |
An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution.
8.8 (High)
Mitigation
The CDC 90 device is not designed for network connectivity by default. Since it is not connected to a network, the vulnerabilities cannot be exploited. However, if the customer chooses to connect the device to a network, the default firewall settings should be maintained, as this will mitigate the security vulnerabilities.
For the CC 100 and PFC 200 devices, ensure that the default firewall settings remain intact and that both PLC Runtime and PLC WebVisu are disabled. This configuration effectively mitigates the identified security vulnerabilities.
Vendor Fix
Although the CDC 90 device is typically not connected to a network, making exploitation of the vulnerabilities unlikely, Endress+Hauser has provided an update to eliminate the vulnerabilities should the device be connected.
For the CC 100 and PFC 200 devices, Endress+Hauser provides updated firmware that incorporates WAGO's security fixes for the identified vulnerabilities. Customers are advised to update to the latest version.
Affected products
Fixed
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-32001 | — | ||
| Unresolved product id: CSAFPID-32002 | — | ||
| Unresolved product id: CSAFPID-32003 | — |
Known affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31001 | — | ||
| Unresolved product id: CSAFPID-31002 | — | ||
| Unresolved product id: CSAFPID-31003 | — | ||
| Unresolved product id: CSAFPID-31004 | — | ||
| Unresolved product id: CSAFPID-31005 | — | ||
| Unresolved product id: CSAFPID-31006 | — |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31001 | — | ||
| Unresolved product id: CSAFPID-31002 | — | ||
| Unresolved product id: CSAFPID-31005 | — |
An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution.
8.8 (High)
Mitigation
The CDC 90 device is not designed for network connectivity by default. Since it is not connected to a network, the vulnerabilities cannot be exploited. However, if the customer chooses to connect the device to a network, the default firewall settings should be maintained, as this will mitigate the security vulnerabilities.
For the CC 100 and PFC 200 devices, ensure that the default firewall settings remain intact and that both PLC Runtime and PLC WebVisu are disabled. This configuration effectively mitigates the identified security vulnerabilities.
Vendor Fix
Although the CDC 90 device is typically not connected to a network, making exploitation of the vulnerabilities unlikely, Endress+Hauser has provided an update to eliminate the vulnerabilities should the device be connected.
For the CC 100 and PFC 200 devices, Endress+Hauser provides updated firmware that incorporates WAGO's security fixes for the identified vulnerabilities. Customers are advised to update to the latest version.
Affected products
Fixed
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-32001 | — | ||
| Unresolved product id: CSAFPID-32002 | — | ||
| Unresolved product id: CSAFPID-32003 | — |
Known affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31001 | — | ||
| Unresolved product id: CSAFPID-31002 | — | ||
| Unresolved product id: CSAFPID-31003 | — | ||
| Unresolved product id: CSAFPID-31004 | — | ||
| Unresolved product id: CSAFPID-31005 | — | ||
| Unresolved product id: CSAFPID-31006 | — |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31001 | — | ||
| Unresolved product id: CSAFPID-31002 | — | ||
| Unresolved product id: CSAFPID-31005 | — |
An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution.
8.8 (High)
Mitigation
The CDC 90 device is not designed for network connectivity by default. Since it is not connected to a network, the vulnerabilities cannot be exploited. However, if the customer chooses to connect the device to a network, the default firewall settings should be maintained, as this will mitigate the security vulnerabilities.
For the CC 100 and PFC 200 devices, ensure that the default firewall settings remain intact and that both PLC Runtime and PLC WebVisu are disabled. This configuration effectively mitigates the identified security vulnerabilities.
Vendor Fix
Although the CDC 90 device is typically not connected to a network, making exploitation of the vulnerabilities unlikely, Endress+Hauser has provided an update to eliminate the vulnerabilities should the device be connected.
For the CC 100 and PFC 200 devices, Endress+Hauser provides updated firmware that incorporates WAGO's security fixes for the identified vulnerabilities. Customers are advised to update to the latest version.
Affected products
Fixed
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-32001 | — | ||
| Unresolved product id: CSAFPID-32002 | — | ||
| Unresolved product id: CSAFPID-32003 | — |
Known affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31001 | — | ||
| Unresolved product id: CSAFPID-31002 | — | ||
| Unresolved product id: CSAFPID-31003 | — | ||
| Unresolved product id: CSAFPID-31004 | — | ||
| Unresolved product id: CSAFPID-31005 | — | ||
| Unresolved product id: CSAFPID-31006 | — |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31001 | — | ||
| Unresolved product id: CSAFPID-31002 | — | ||
| Unresolved product id: CSAFPID-31005 | — |
An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution.
8.8 (High)
Mitigation
The CDC 90 device is not designed for network connectivity by default. Since it is not connected to a network, the vulnerabilities cannot be exploited. However, if the customer chooses to connect the device to a network, the default firewall settings should be maintained, as this will mitigate the security vulnerabilities.
For the CC 100 and PFC 200 devices, ensure that the default firewall settings remain intact and that both PLC Runtime and PLC WebVisu are disabled. This configuration effectively mitigates the identified security vulnerabilities.
Vendor Fix
Although the CDC 90 device is typically not connected to a network, making exploitation of the vulnerabilities unlikely, Endress+Hauser has provided an update to eliminate the vulnerabilities should the device be connected.
For the CC 100 and PFC 200 devices, Endress+Hauser provides updated firmware that incorporates WAGO's security fixes for the identified vulnerabilities. Customers are advised to update to the latest version.
Affected products
Fixed
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-32001 | — | ||
| Unresolved product id: CSAFPID-32002 | — | ||
| Unresolved product id: CSAFPID-32003 | — |
Known affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31001 | — | ||
| Unresolved product id: CSAFPID-31002 | — | ||
| Unresolved product id: CSAFPID-31003 | — | ||
| Unresolved product id: CSAFPID-31004 | — | ||
| Unresolved product id: CSAFPID-31005 | — | ||
| Unresolved product id: CSAFPID-31006 | — |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31001 | — | ||
| Unresolved product id: CSAFPID-31002 | — | ||
| Unresolved product id: CSAFPID-31005 | — |
An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the CmpAppForce Component of multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution.
8.8 (High)
Mitigation
The CDC 90 device is not designed for network connectivity by default. Since it is not connected to a network, the vulnerabilities cannot be exploited. However, if the customer chooses to connect the device to a network, the default firewall settings should be maintained, as this will mitigate the security vulnerabilities.
For the CC 100 and PFC 200 devices, ensure that the default firewall settings remain intact and that both PLC Runtime and PLC WebVisu are disabled. This configuration effectively mitigates the identified security vulnerabilities.
Vendor Fix
Although the CDC 90 device is typically not connected to a network, making exploitation of the vulnerabilities unlikely, Endress+Hauser has provided an update to eliminate the vulnerabilities should the device be connected.
For the CC 100 and PFC 200 devices, Endress+Hauser provides updated firmware that incorporates WAGO's security fixes for the identified vulnerabilities. Customers are advised to update to the latest version.
Affected products
Fixed
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-32001 | — | ||
| Unresolved product id: CSAFPID-32002 | — | ||
| Unresolved product id: CSAFPID-32003 | — |
Known affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31001 | — | ||
| Unresolved product id: CSAFPID-31002 | — | ||
| Unresolved product id: CSAFPID-31003 | — | ||
| Unresolved product id: CSAFPID-31004 | — | ||
| Unresolved product id: CSAFPID-31005 | — | ||
| Unresolved product id: CSAFPID-31006 | — |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31001 | — | ||
| Unresolved product id: CSAFPID-31002 | — | ||
| Unresolved product id: CSAFPID-31005 | — |
An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution.
8.8 (High)
Mitigation
The CDC 90 device is not designed for network connectivity by default. Since it is not connected to a network, the vulnerabilities cannot be exploited. However, if the customer chooses to connect the device to a network, the default firewall settings should be maintained, as this will mitigate the security vulnerabilities.
For the CC 100 and PFC 200 devices, ensure that the default firewall settings remain intact and that both PLC Runtime and PLC WebVisu are disabled. This configuration effectively mitigates the identified security vulnerabilities.
Vendor Fix
Although the CDC 90 device is typically not connected to a network, making exploitation of the vulnerabilities unlikely, Endress+Hauser has provided an update to eliminate the vulnerabilities should the device be connected.
For the CC 100 and PFC 200 devices, Endress+Hauser provides updated firmware that incorporates WAGO's security fixes for the identified vulnerabilities. Customers are advised to update to the latest version.
Affected products
Fixed
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-32001 | — | ||
| Unresolved product id: CSAFPID-32002 | — | ||
| Unresolved product id: CSAFPID-32003 | — |
Known affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31001 | — | ||
| Unresolved product id: CSAFPID-31002 | — | ||
| Unresolved product id: CSAFPID-31003 | — | ||
| Unresolved product id: CSAFPID-31004 | — | ||
| Unresolved product id: CSAFPID-31005 | — | ||
| Unresolved product id: CSAFPID-31006 | — |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31001 | — | ||
| Unresolved product id: CSAFPID-31002 | — | ||
| Unresolved product id: CSAFPID-31005 | — |
An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution.
8.8 (High)
Mitigation
The CDC 90 device is not designed for network connectivity by default. Since it is not connected to a network, the vulnerabilities cannot be exploited. However, if the customer chooses to connect the device to a network, the default firewall settings should be maintained, as this will mitigate the security vulnerabilities.
For the CC 100 and PFC 200 devices, ensure that the default firewall settings remain intact and that both PLC Runtime and PLC WebVisu are disabled. This configuration effectively mitigates the identified security vulnerabilities.
Vendor Fix
Although the CDC 90 device is typically not connected to a network, making exploitation of the vulnerabilities unlikely, Endress+Hauser has provided an update to eliminate the vulnerabilities should the device be connected.
For the CC 100 and PFC 200 devices, Endress+Hauser provides updated firmware that incorporates WAGO's security fixes for the identified vulnerabilities. Customers are advised to update to the latest version.
Affected products
Fixed
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-32001 | — | ||
| Unresolved product id: CSAFPID-32002 | — | ||
| Unresolved product id: CSAFPID-32003 | — |
Known affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31001 | — | ||
| Unresolved product id: CSAFPID-31002 | — | ||
| Unresolved product id: CSAFPID-31003 | — | ||
| Unresolved product id: CSAFPID-31004 | — | ||
| Unresolved product id: CSAFPID-31005 | — | ||
| Unresolved product id: CSAFPID-31006 | — |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31001 | — | ||
| Unresolved product id: CSAFPID-31002 | — | ||
| Unresolved product id: CSAFPID-31005 | — |
An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution.
8.8 (High)
Mitigation
The CDC 90 device is not designed for network connectivity by default. Since it is not connected to a network, the vulnerabilities cannot be exploited. However, if the customer chooses to connect the device to a network, the default firewall settings should be maintained, as this will mitigate the security vulnerabilities.
For the CC 100 and PFC 200 devices, ensure that the default firewall settings remain intact and that both PLC Runtime and PLC WebVisu are disabled. This configuration effectively mitigates the identified security vulnerabilities.
Vendor Fix
Although the CDC 90 device is typically not connected to a network, making exploitation of the vulnerabilities unlikely, Endress+Hauser has provided an update to eliminate the vulnerabilities should the device be connected.
For the CC 100 and PFC 200 devices, Endress+Hauser provides updated firmware that incorporates WAGO's security fixes for the identified vulnerabilities. Customers are advised to update to the latest version.
Affected products
Fixed
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-32001 | — | ||
| Unresolved product id: CSAFPID-32002 | — | ||
| Unresolved product id: CSAFPID-32003 | — |
Known affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31001 | — | ||
| Unresolved product id: CSAFPID-31002 | — | ||
| Unresolved product id: CSAFPID-31003 | — | ||
| Unresolved product id: CSAFPID-31004 | — | ||
| Unresolved product id: CSAFPID-31005 | — | ||
| Unresolved product id: CSAFPID-31006 | — |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31001 | — | ||
| Unresolved product id: CSAFPID-31002 | — | ||
| Unresolved product id: CSAFPID-31005 | — |
An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution.
8.8 (High)
Mitigation
The CDC 90 device is not designed for network connectivity by default. Since it is not connected to a network, the vulnerabilities cannot be exploited. However, if the customer chooses to connect the device to a network, the default firewall settings should be maintained, as this will mitigate the security vulnerabilities.
For the CC 100 and PFC 200 devices, ensure that the default firewall settings remain intact and that both PLC Runtime and PLC WebVisu are disabled. This configuration effectively mitigates the identified security vulnerabilities.
Vendor Fix
Although the CDC 90 device is typically not connected to a network, making exploitation of the vulnerabilities unlikely, Endress+Hauser has provided an update to eliminate the vulnerabilities should the device be connected.
For the CC 100 and PFC 200 devices, Endress+Hauser provides updated firmware that incorporates WAGO's security fixes for the identified vulnerabilities. Customers are advised to update to the latest version.
Affected products
Fixed
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-32001 | — | ||
| Unresolved product id: CSAFPID-32002 | — | ||
| Unresolved product id: CSAFPID-32003 | — |
Known affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31001 | — | ||
| Unresolved product id: CSAFPID-31002 | — | ||
| Unresolved product id: CSAFPID-31003 | — | ||
| Unresolved product id: CSAFPID-31004 | — | ||
| Unresolved product id: CSAFPID-31005 | — | ||
| Unresolved product id: CSAFPID-31006 | — |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31001 | — | ||
| Unresolved product id: CSAFPID-31002 | — | ||
| Unresolved product id: CSAFPID-31005 | — |
An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution.
8.8 (High)
Mitigation
The CDC 90 device is not designed for network connectivity by default. Since it is not connected to a network, the vulnerabilities cannot be exploited. However, if the customer chooses to connect the device to a network, the default firewall settings should be maintained, as this will mitigate the security vulnerabilities.
For the CC 100 and PFC 200 devices, ensure that the default firewall settings remain intact and that both PLC Runtime and PLC WebVisu are disabled. This configuration effectively mitigates the identified security vulnerabilities.
Vendor Fix
Although the CDC 90 device is typically not connected to a network, making exploitation of the vulnerabilities unlikely, Endress+Hauser has provided an update to eliminate the vulnerabilities should the device be connected.
For the CC 100 and PFC 200 devices, Endress+Hauser provides updated firmware that incorporates WAGO's security fixes for the identified vulnerabilities. Customers are advised to update to the latest version.
Affected products
Fixed
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-32001 | — | ||
| Unresolved product id: CSAFPID-32002 | — | ||
| Unresolved product id: CSAFPID-32003 | — |
Known affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31001 | — | ||
| Unresolved product id: CSAFPID-31002 | — | ||
| Unresolved product id: CSAFPID-31003 | — | ||
| Unresolved product id: CSAFPID-31004 | — | ||
| Unresolved product id: CSAFPID-31005 | — | ||
| Unresolved product id: CSAFPID-31006 | — |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31001 | — | ||
| Unresolved product id: CSAFPID-31002 | — | ||
| Unresolved product id: CSAFPID-31005 | — |
In multiple CODESYS products in multiple versions an unauthorized, remote attacker may use a improper input validation vulnerability to read from invalid addresses leading to a denial of service.
7.5 (High)
Mitigation
The CDC 90 device is not designed for network connectivity by default. Since it is not connected to a network, the vulnerabilities cannot be exploited. However, if the customer chooses to connect the device to a network, the default firewall settings should be maintained, as this will mitigate the security vulnerabilities.
For the CC 100 and PFC 200 devices, ensure that the default firewall settings remain intact and that both PLC Runtime and PLC WebVisu are disabled. This configuration effectively mitigates the identified security vulnerabilities.
Vendor Fix
Although the CDC 90 device is typically not connected to a network, making exploitation of the vulnerabilities unlikely, Endress+Hauser has provided an update to eliminate the vulnerabilities should the device be connected.
For the CC 100 and PFC 200 devices, Endress+Hauser provides updated firmware that incorporates WAGO's security fixes for the identified vulnerabilities. Customers are advised to update to the latest version.
Affected products
Fixed
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-32001 | — | ||
| Unresolved product id: CSAFPID-32002 | — | ||
| Unresolved product id: CSAFPID-32003 | — |
Known affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31001 | — | ||
| Unresolved product id: CSAFPID-31002 | — | ||
| Unresolved product id: CSAFPID-31003 | — | ||
| Unresolved product id: CSAFPID-31004 | — | ||
| Unresolved product id: CSAFPID-31005 | — | ||
| Unresolved product id: CSAFPID-31006 | — |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31001 | — | ||
| Unresolved product id: CSAFPID-31002 | — | ||
| Unresolved product id: CSAFPID-31005 | — |
An authenticated, remote attacker may use a improper input validation vulnerability in the CmpApp/CmpAppBP/CmpAppForce Components of multiple CODESYS products in multiple versions to read from an invalid address which can lead to a denial-of-service condition.
6.5 (Medium)
Mitigation
The CDC 90 device is not designed for network connectivity by default. Since it is not connected to a network, the vulnerabilities cannot be exploited. However, if the customer chooses to connect the device to a network, the default firewall settings should be maintained, as this will mitigate the security vulnerabilities.
For the CC 100 and PFC 200 devices, ensure that the default firewall settings remain intact and that both PLC Runtime and PLC WebVisu are disabled. This configuration effectively mitigates the identified security vulnerabilities.
Vendor Fix
Although the CDC 90 device is typically not connected to a network, making exploitation of the vulnerabilities unlikely, Endress+Hauser has provided an update to eliminate the vulnerabilities should the device be connected.
For the CC 100 and PFC 200 devices, Endress+Hauser provides updated firmware that incorporates WAGO's security fixes for the identified vulnerabilities. Customers are advised to update to the latest version.
Affected products
Fixed
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-32001 | — | ||
| Unresolved product id: CSAFPID-32002 | — | ||
| Unresolved product id: CSAFPID-32003 | — |
Known affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31001 | — | ||
| Unresolved product id: CSAFPID-31002 | — | ||
| Unresolved product id: CSAFPID-31003 | — | ||
| Unresolved product id: CSAFPID-31004 | — | ||
| Unresolved product id: CSAFPID-31005 | — | ||
| Unresolved product id: CSAFPID-31006 | — |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31001 | — | ||
| Unresolved product id: CSAFPID-31002 | — | ||
| Unresolved product id: CSAFPID-31005 | — |
An authenticated, remote attacker may use a Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple versions of multiple CODESYS products to force a denial-of-service situation.
6.5 (Medium)
Mitigation
The CDC 90 device is not designed for network connectivity by default. Since it is not connected to a network, the vulnerabilities cannot be exploited. However, if the customer chooses to connect the device to a network, the default firewall settings should be maintained, as this will mitigate the security vulnerabilities.
For the CC 100 and PFC 200 devices, ensure that the default firewall settings remain intact and that both PLC Runtime and PLC WebVisu are disabled. This configuration effectively mitigates the identified security vulnerabilities.
Vendor Fix
Although the CDC 90 device is typically not connected to a network, making exploitation of the vulnerabilities unlikely, Endress+Hauser has provided an update to eliminate the vulnerabilities should the device be connected.
For the CC 100 and PFC 200 devices, Endress+Hauser provides updated firmware that incorporates WAGO's security fixes for the identified vulnerabilities. Customers are advised to update to the latest version.
Affected products
Fixed
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-32001 | — | ||
| Unresolved product id: CSAFPID-32002 | — | ||
| Unresolved product id: CSAFPID-32003 | — |
Known affected
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31001 | — | ||
| Unresolved product id: CSAFPID-31002 | — | ||
| Unresolved product id: CSAFPID-31003 | — | ||
| Unresolved product id: CSAFPID-31004 | — | ||
| Unresolved product id: CSAFPID-31005 | — | ||
| Unresolved product id: CSAFPID-31006 | — |
Last affected
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: CSAFPID-31001 | — | ||
| Unresolved product id: CSAFPID-31002 | — | ||
| Unresolved product id: CSAFPID-31005 | — |
References
4 references
| URL | Category |
|---|---|
| https://www.endress.com | external |
| https://certvde.com/en/advisories/vendor/endress+hauser | external |
| https://certvde.com/en/advisories/VDE-2026-003 | self |
| https://endress-hauser.csaf-tp.certvde.com/.well-… | self |
Acknowledgments
CERT@VDE
certvde.com
{
"document": {
"acknowledgments": [
{
"organization": "CERT@VDE",
"summary": "coordination",
"urls": [
"https://certvde.com"
]
}
],
"aggregate_severity": {
"namespace": "https://www.first.org/cvss/v3.1/specification-document#Qualitative-Severity-Rating-Scale",
"text": "high"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE"
}
},
"lang": "en-US",
"notes": [
{
"category": "summary",
"text": "Multiple Endress+Hauser devices are prone to vulnerabilities found in e!Runtime and the CODESYS V3 framework. ",
"title": "Summary"
},
{
"category": "description",
"text": "An external attacker could exploit the vulnerabilities to cause denial-of-service, overwrite memory, or execute arbitrary code. ",
"title": "Impact"
},
{
"category": "description",
"text": "The CDC 90 device is not designed for network connectivity by default. Since it is not connected to a network, the vulnerabilities cannot be exploited. However, if the customer chooses to connect the device to a network, the default firewall settings should be maintained, as this will mitigate the security vulnerabilities. \n\n \n\nFor the CC 100 and PFC 200 devices, ensure that the default firewall settings remain intact and that both PLC Runtime and PLC WebVisu are disabled. This configuration effectively mitigates the identified security vulnerabilities. ",
"title": "Mitigation"
},
{
"category": "description",
"text": "Although the CDC 90 device is typically not connected to a network, making exploitation of the vulnerabilities unlikely, Endress+Hauser has provided an update to eliminate the vulnerabilities should the device be connected. \n\nFor the CC 100 and PFC 200 devices, Endress+Hauser provides updated firmware that incorporates WAGO\u0027s security fixes for the identified vulnerabilities. Customers are advised to update to the latest version \n\nFor support, please contact your local service center.\n\n| Product | Fixed Version |\n|--------|--------------|\n| CC 100 (751-9301) | FW 28 |\n| PFC 200 (750-82xx/xxx-xxx) | FW 28 |\n| CDC 90 | V3.5.19.0 |",
"title": "Remediation"
},
{
"category": "general",
"text": "Endress+Hauser recommends using the solutions only in a secure environment and to allow access to their components only to authorized persons. ",
"title": "General Recommendation"
}
],
"publisher": {
"category": "vendor",
"contact_details": "psirt@endress.com",
"name": "Endress+Hauser AG",
"namespace": "https://www.endress.com"
},
"references": [
{
"category": "external",
"summary": "Endress+Hauser",
"url": "https://www.endress.com"
},
{
"category": "external",
"summary": "CERT@VDE Security Advisories for Endress+Hauser",
"url": "https://certvde.com/en/advisories/vendor/endress+hauser"
},
{
"category": "self",
"summary": "VDE-2026-003: Endress+Hauser: Multiple products prone to multiple vulnerabilities in e!Runtime and CODESYS V3 Runtime - HTML",
"url": "https://certvde.com/en/advisories/VDE-2026-003"
},
{
"category": "self",
"summary": "VDE-2026-003: Endress+Hauser: Multiple products prone to multiple vulnerabilities in e!Runtime and CODESYS V3 Runtime - CSAF",
"url": "https://endress-hauser.csaf-tp.certvde.com/.well-known/csaf/white/2026/vde-2026-003.json"
}
],
"title": "Endress+Hauser: Multiple products prone to multiple vulnerabilities in e!Runtime and CODESYS V3 Runtime ",
"tracking": {
"aliases": [
"VDE-2026-003"
],
"current_release_date": "2026-04-01T11:00:00.000Z",
"generator": {
"date": "2026-04-01T10:32:14.211Z",
"engine": {
"name": "Secvisogram",
"version": "2.5.44"
}
},
"id": "VDE-2026-003",
"initial_release_date": "2026-03-31T08:00:00.000Z",
"revision_history": [
{
"date": "2026-03-31T08:00:00.000Z",
"number": "1.0.0",
"summary": "Initial version"
},
{
"date": "2026-04-01T11:00:00.000Z",
"number": "1.0.1",
"summary": "Edited a typo in product tree."
}
],
"status": "final",
"version": "1.0.1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "CC 100 (751-9301) ",
"product": {
"name": "Endress+Hauser CC 100 (751-9301) ",
"product_id": "CSAFPID-11001",
"product_identification_helper": {
"cpe": "cpe:2.3:h:wago:cc_100:*:*:*:*:*:*:*:*",
"model_numbers": [
"751-9301"
]
}
}
},
{
"category": "product_name",
"name": "PFC 200 (750-82xx/xxx-xxx) ",
"product": {
"name": "Endress+Hauser PFC 200 (750-82xx/xxx-xxx) ",
"product_id": "CSAFPID-11002",
"product_identification_helper": {
"cpe": "cpe:2.3:h:wago:pfc_200:*:*:*:*:*:*:*:*",
"model_numbers": [
"750-82??"
]
}
}
},
{
"category": "product_name",
"name": "CDC 90 ",
"product": {
"name": "Endress+Hauser CDC 90 ",
"product_id": "CSAFPID-11003",
"product_identification_helper": {
"cpe": "cpe:2.3:h:wago:cdc_90:*:*:*:*:*:*:*:*"
}
}
}
],
"category": "product_family",
"name": "Hardware"
},
{
"branches": [
{
"category": "product_version",
"name": "FW 25",
"product": {
"name": "Firmware FW 25",
"product_id": "CSAFPID-21001"
}
},
{
"category": "product_version",
"name": "FW 28",
"product": {
"name": "Firmware FW 28",
"product_id": "CSAFPID-22001"
}
},
{
"category": "product_version_range",
"name": "vers:generic/\u003c=FW 25",
"product": {
"name": "Firmware \u003c=FW 25",
"product_id": "CSAFPID-21002"
}
},
{
"category": "product_version",
"name": "V3.5.18.0 ",
"product": {
"name": "Firmware V3.5.18.0 ",
"product_id": "CSAFPID-21003"
}
},
{
"category": "product_version",
"name": "V3.5.19.0 ",
"product": {
"name": "Firmware V3.5.19.0 ",
"product_id": "CSAFPID-22002"
}
},
{
"category": "product_version_range",
"name": "vers:generic/\u003c=V3.5.18.0",
"product": {
"name": "Firmware \u003c=V3.5.18.0",
"product_id": "CSAFPID-21004"
}
}
],
"category": "product_family",
"name": "Firmware"
}
],
"category": "vendor",
"name": "Endress+Hauser"
}
],
"product_groups": [
{
"group_id": "CSAFGID-0001",
"product_ids": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005",
"CSAFPID-31006"
],
"summary": "Affected Products."
},
{
"group_id": "CSAFGID-0002",
"product_ids": [
"CSAFPID-32001",
"CSAFPID-32002",
"CSAFPID-32003"
],
"summary": "Fixed Products."
}
],
"relationships": [
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware FW 23 installed on CC 100 (751-9301) ",
"product_id": "CSAFPID-31001",
"product_identification_helper": {
"cpe": "cpe:2.3:o:wago:cc_100_firmware:fw23:*:*:*:*:*:*:*"
}
},
"product_reference": "CSAFPID-21001",
"relates_to_product_reference": "CSAFPID-11001"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware FW 28 installed on CC 100 (751-9301) ",
"product_id": "CSAFPID-32001",
"product_identification_helper": {
"cpe": "cpe:2.3:o:wago:cc_100_firmware:fw28:*:*:*:*:*:*:*"
}
},
"product_reference": "CSAFPID-22001",
"relates_to_product_reference": "CSAFPID-11001"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware FW 23 installed on PFC 200 (750-82xx/xxx-xxx) ",
"product_id": "CSAFPID-31002",
"product_identification_helper": {
"cpe": "cpe:2.3:o:wago:pfc_200_firmware:fw23:*:*:*:*:*:*:*"
}
},
"product_reference": "CSAFPID-21001",
"relates_to_product_reference": "CSAFPID-11002"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware FW 28 installed on PFC 200 (750-82xx/xxx-xxx) ",
"product_id": "CSAFPID-32002",
"product_identification_helper": {
"cpe": "cpe:2.3:o:wago:pfc_200_firmware:fw28:*:*:*:*:*:*:*"
}
},
"product_reference": "CSAFPID-22001",
"relates_to_product_reference": "CSAFPID-11002"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=FW 23 installed on CC 100 (751-9301) ",
"product_id": "CSAFPID-31003"
},
"product_reference": "CSAFPID-21002",
"relates_to_product_reference": "CSAFPID-11001"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=FW 23 installed on PFC 200 (750-82xx/xxx-xxx) ",
"product_id": "CSAFPID-31004"
},
"product_reference": "CSAFPID-21002",
"relates_to_product_reference": "CSAFPID-11002"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware V3.5.18.0 installed on CDC 90",
"product_id": "CSAFPID-31005",
"product_identification_helper": {
"cpe": "cpe:2.3:o:wago:cdc_90_firmware:v3.5.18.0:*:*:*:*:*:*:*"
}
},
"product_reference": "CSAFPID-21003",
"relates_to_product_reference": "CSAFPID-11003"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware V3.5.19.0 installed on CDC 90",
"product_id": "CSAFPID-32003",
"product_identification_helper": {
"cpe": "cpe:2.3:o:wago:cdc_90_firmware:v3.5.19.0:*:*:*:*:*:*:*"
}
},
"product_reference": "CSAFPID-22002",
"relates_to_product_reference": "CSAFPID-11003"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=V3.5.18.0 installed on CDC 90",
"product_id": "CSAFPID-31006"
},
"product_reference": "CSAFPID-21004",
"relates_to_product_reference": "CSAFPID-11003"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2022-47378",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"audience": "all",
"category": "description",
"text": "Multiple CODESYS products in multiple versions are prone to a improper input validation vulnerability. An authenticated remote attacker may craft specific requests that use the vulnerability leading to a denial-of-service condition.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-32001",
"CSAFPID-32002",
"CSAFPID-32003"
],
"known_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005",
"CSAFPID-31006"
],
"last_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "mitigation",
"details": "The CDC 90 device is not designed for network connectivity by default. Since it is not connected to a network, the vulnerabilities cannot be exploited. However, if the customer chooses to connect the device to a network, the default firewall settings should be maintained, as this will mitigate the security vulnerabilities. \n\n \n\nFor the CC 100 and PFC 200 devices, ensure that the default firewall settings remain intact and that both PLC Runtime and PLC WebVisu are disabled. This configuration effectively mitigates the identified security vulnerabilities.",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "Although the CDC 90 device is typically not connected to a network, making exploitation of the vulnerabilities unlikely, Endress+Hauser has provided an update to eliminate the vulnerabilities should the device be connected. \n\n \n\nFor the CC 100 and PFC 200 devices, Endress+Hauser provides updated firmware that incorporates WAGO\u0027s security fixes for the identified vulnerabilities. Customers are advised to update to the latest version.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 6.5,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 6.5,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005",
"CSAFPID-31006"
]
}
],
"title": "CVE-2022-47378"
},
{
"cve": "CVE-2022-47379",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"audience": "all",
"category": "description",
"text": "An authenticated, remote attacker may use a out-of-bounds write vulnerability in multiple CODESYS products in multiple versions to write data into memory which can lead to a denial-of-service condition, memory overwriting, or remote code execution.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-32001",
"CSAFPID-32002",
"CSAFPID-32003"
],
"known_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005",
"CSAFPID-31006"
],
"last_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "mitigation",
"details": "The CDC 90 device is not designed for network connectivity by default. Since it is not connected to a network, the vulnerabilities cannot be exploited. However, if the customer chooses to connect the device to a network, the default firewall settings should be maintained, as this will mitigate the security vulnerabilities. \n\n \n\nFor the CC 100 and PFC 200 devices, ensure that the default firewall settings remain intact and that both PLC Runtime and PLC WebVisu are disabled. This configuration effectively mitigates the identified security vulnerabilities.",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "Although the CDC 90 device is typically not connected to a network, making exploitation of the vulnerabilities unlikely, Endress+Hauser has provided an update to eliminate the vulnerabilities should the device be connected. \n\n \n\nFor the CC 100 and PFC 200 devices, Endress+Hauser provides updated firmware that incorporates WAGO\u0027s security fixes for the identified vulnerabilities. Customers are advised to update to the latest version.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 8.8,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 8.8,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005",
"CSAFPID-31006"
]
}
],
"title": "CVE-2022-47379"
},
{
"cve": "CVE-2022-47380",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"audience": "all",
"category": "description",
"text": "An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-32001",
"CSAFPID-32002",
"CSAFPID-32003"
],
"known_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005",
"CSAFPID-31006"
],
"last_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "mitigation",
"details": "The CDC 90 device is not designed for network connectivity by default. Since it is not connected to a network, the vulnerabilities cannot be exploited. However, if the customer chooses to connect the device to a network, the default firewall settings should be maintained, as this will mitigate the security vulnerabilities. \n\n \n\nFor the CC 100 and PFC 200 devices, ensure that the default firewall settings remain intact and that both PLC Runtime and PLC WebVisu are disabled. This configuration effectively mitigates the identified security vulnerabilities.",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "Although the CDC 90 device is typically not connected to a network, making exploitation of the vulnerabilities unlikely, Endress+Hauser has provided an update to eliminate the vulnerabilities should the device be connected. \n\n \n\nFor the CC 100 and PFC 200 devices, Endress+Hauser provides updated firmware that incorporates WAGO\u0027s security fixes for the identified vulnerabilities. Customers are advised to update to the latest version.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 8.8,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 8.8,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005",
"CSAFPID-31006"
]
}
],
"title": "CVE-2022-47380"
},
{
"cve": "CVE-2022-47381",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"audience": "all",
"category": "description",
"text": "An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-32001",
"CSAFPID-32002",
"CSAFPID-32003"
],
"known_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005",
"CSAFPID-31006"
],
"last_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "mitigation",
"details": "The CDC 90 device is not designed for network connectivity by default. Since it is not connected to a network, the vulnerabilities cannot be exploited. However, if the customer chooses to connect the device to a network, the default firewall settings should be maintained, as this will mitigate the security vulnerabilities. \n\n \n\nFor the CC 100 and PFC 200 devices, ensure that the default firewall settings remain intact and that both PLC Runtime and PLC WebVisu are disabled. This configuration effectively mitigates the identified security vulnerabilities.",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "Although the CDC 90 device is typically not connected to a network, making exploitation of the vulnerabilities unlikely, Endress+Hauser has provided an update to eliminate the vulnerabilities should the device be connected. \n\n \n\nFor the CC 100 and PFC 200 devices, Endress+Hauser provides updated firmware that incorporates WAGO\u0027s security fixes for the identified vulnerabilities. Customers are advised to update to the latest version.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 8.8,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 8.8,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005",
"CSAFPID-31006"
]
}
],
"title": "CVE-2022-47381"
},
{
"cve": "CVE-2022-47382",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"audience": "all",
"category": "description",
"text": "An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-32001",
"CSAFPID-32002",
"CSAFPID-32003"
],
"known_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005",
"CSAFPID-31006"
],
"last_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "mitigation",
"details": "The CDC 90 device is not designed for network connectivity by default. Since it is not connected to a network, the vulnerabilities cannot be exploited. However, if the customer chooses to connect the device to a network, the default firewall settings should be maintained, as this will mitigate the security vulnerabilities. \n\n \n\nFor the CC 100 and PFC 200 devices, ensure that the default firewall settings remain intact and that both PLC Runtime and PLC WebVisu are disabled. This configuration effectively mitigates the identified security vulnerabilities.",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "Although the CDC 90 device is typically not connected to a network, making exploitation of the vulnerabilities unlikely, Endress+Hauser has provided an update to eliminate the vulnerabilities should the device be connected. \n\n \n\nFor the CC 100 and PFC 200 devices, Endress+Hauser provides updated firmware that incorporates WAGO\u0027s security fixes for the identified vulnerabilities. Customers are advised to update to the latest version.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 8.8,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 8.8,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005",
"CSAFPID-31006"
]
}
],
"title": "CVE-2022-47382"
},
{
"cve": "CVE-2022-47383",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"audience": "all",
"category": "description",
"text": "An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-32001",
"CSAFPID-32002",
"CSAFPID-32003"
],
"known_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005",
"CSAFPID-31006"
],
"last_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "mitigation",
"details": "The CDC 90 device is not designed for network connectivity by default. Since it is not connected to a network, the vulnerabilities cannot be exploited. However, if the customer chooses to connect the device to a network, the default firewall settings should be maintained, as this will mitigate the security vulnerabilities. \n\n \n\nFor the CC 100 and PFC 200 devices, ensure that the default firewall settings remain intact and that both PLC Runtime and PLC WebVisu are disabled. This configuration effectively mitigates the identified security vulnerabilities.",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "Although the CDC 90 device is typically not connected to a network, making exploitation of the vulnerabilities unlikely, Endress+Hauser has provided an update to eliminate the vulnerabilities should the device be connected. \n\n \n\nFor the CC 100 and PFC 200 devices, Endress+Hauser provides updated firmware that incorporates WAGO\u0027s security fixes for the identified vulnerabilities. Customers are advised to update to the latest version.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 8.8,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 8.8,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005",
"CSAFPID-31006"
]
}
],
"title": "CVE-2022-47383"
},
{
"cve": "CVE-2022-47384",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"audience": "all",
"category": "description",
"text": "An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-32001",
"CSAFPID-32002",
"CSAFPID-32003"
],
"known_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005",
"CSAFPID-31006"
],
"last_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "mitigation",
"details": "The CDC 90 device is not designed for network connectivity by default. Since it is not connected to a network, the vulnerabilities cannot be exploited. However, if the customer chooses to connect the device to a network, the default firewall settings should be maintained, as this will mitigate the security vulnerabilities. \n\n \n\nFor the CC 100 and PFC 200 devices, ensure that the default firewall settings remain intact and that both PLC Runtime and PLC WebVisu are disabled. This configuration effectively mitigates the identified security vulnerabilities.",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "Although the CDC 90 device is typically not connected to a network, making exploitation of the vulnerabilities unlikely, Endress+Hauser has provided an update to eliminate the vulnerabilities should the device be connected. \n\n \n\nFor the CC 100 and PFC 200 devices, Endress+Hauser provides updated firmware that incorporates WAGO\u0027s security fixes for the identified vulnerabilities. Customers are advised to update to the latest version.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 8.8,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 8.8,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005",
"CSAFPID-31006"
]
}
],
"title": "CVE-2022-47384"
},
{
"cve": "CVE-2022-47385",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"audience": "all",
"category": "description",
"text": "An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the CmpAppForce Component of multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-32001",
"CSAFPID-32002",
"CSAFPID-32003"
],
"known_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005",
"CSAFPID-31006"
],
"last_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "mitigation",
"details": "The CDC 90 device is not designed for network connectivity by default. Since it is not connected to a network, the vulnerabilities cannot be exploited. However, if the customer chooses to connect the device to a network, the default firewall settings should be maintained, as this will mitigate the security vulnerabilities. \n\n \n\nFor the CC 100 and PFC 200 devices, ensure that the default firewall settings remain intact and that both PLC Runtime and PLC WebVisu are disabled. This configuration effectively mitigates the identified security vulnerabilities.",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "Although the CDC 90 device is typically not connected to a network, making exploitation of the vulnerabilities unlikely, Endress+Hauser has provided an update to eliminate the vulnerabilities should the device be connected. \n\n \n\nFor the CC 100 and PFC 200 devices, Endress+Hauser provides updated firmware that incorporates WAGO\u0027s security fixes for the identified vulnerabilities. Customers are advised to update to the latest version.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 8.8,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 8.8,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005",
"CSAFPID-31006"
]
}
],
"title": "CVE-2022-47385"
},
{
"cve": "CVE-2022-47386",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"audience": "all",
"category": "description",
"text": "An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-32001",
"CSAFPID-32002",
"CSAFPID-32003"
],
"known_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005",
"CSAFPID-31006"
],
"last_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "mitigation",
"details": "The CDC 90 device is not designed for network connectivity by default. Since it is not connected to a network, the vulnerabilities cannot be exploited. However, if the customer chooses to connect the device to a network, the default firewall settings should be maintained, as this will mitigate the security vulnerabilities. \n\n \n\nFor the CC 100 and PFC 200 devices, ensure that the default firewall settings remain intact and that both PLC Runtime and PLC WebVisu are disabled. This configuration effectively mitigates the identified security vulnerabilities.",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "Although the CDC 90 device is typically not connected to a network, making exploitation of the vulnerabilities unlikely, Endress+Hauser has provided an update to eliminate the vulnerabilities should the device be connected. \n\n \n\nFor the CC 100 and PFC 200 devices, Endress+Hauser provides updated firmware that incorporates WAGO\u0027s security fixes for the identified vulnerabilities. Customers are advised to update to the latest version.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 8.8,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 8.8,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005",
"CSAFPID-31006"
]
}
],
"title": "CVE-2022-47386"
},
{
"cve": "CVE-2022-47387",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"audience": "all",
"category": "description",
"text": "An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-32001",
"CSAFPID-32002",
"CSAFPID-32003"
],
"known_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005",
"CSAFPID-31006"
],
"last_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "mitigation",
"details": "The CDC 90 device is not designed for network connectivity by default. Since it is not connected to a network, the vulnerabilities cannot be exploited. However, if the customer chooses to connect the device to a network, the default firewall settings should be maintained, as this will mitigate the security vulnerabilities. \n\n \n\nFor the CC 100 and PFC 200 devices, ensure that the default firewall settings remain intact and that both PLC Runtime and PLC WebVisu are disabled. This configuration effectively mitigates the identified security vulnerabilities.",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "Although the CDC 90 device is typically not connected to a network, making exploitation of the vulnerabilities unlikely, Endress+Hauser has provided an update to eliminate the vulnerabilities should the device be connected. \n\n \n\nFor the CC 100 and PFC 200 devices, Endress+Hauser provides updated firmware that incorporates WAGO\u0027s security fixes for the identified vulnerabilities. Customers are advised to update to the latest version.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 8.8,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 8.8,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005",
"CSAFPID-31006"
]
}
],
"title": "CVE-2022-47387"
},
{
"cve": "CVE-2022-47388",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"audience": "all",
"category": "description",
"text": "An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-32001",
"CSAFPID-32002",
"CSAFPID-32003"
],
"known_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005",
"CSAFPID-31006"
],
"last_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "mitigation",
"details": "The CDC 90 device is not designed for network connectivity by default. Since it is not connected to a network, the vulnerabilities cannot be exploited. However, if the customer chooses to connect the device to a network, the default firewall settings should be maintained, as this will mitigate the security vulnerabilities. \n\n \n\nFor the CC 100 and PFC 200 devices, ensure that the default firewall settings remain intact and that both PLC Runtime and PLC WebVisu are disabled. This configuration effectively mitigates the identified security vulnerabilities.",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "Although the CDC 90 device is typically not connected to a network, making exploitation of the vulnerabilities unlikely, Endress+Hauser has provided an update to eliminate the vulnerabilities should the device be connected. \n\n \n\nFor the CC 100 and PFC 200 devices, Endress+Hauser provides updated firmware that incorporates WAGO\u0027s security fixes for the identified vulnerabilities. Customers are advised to update to the latest version.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 8.8,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 8.8,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005",
"CSAFPID-31006"
]
}
],
"title": "CVE-2022-47388"
},
{
"cve": "CVE-2022-47389",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"audience": "all",
"category": "description",
"text": "An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-32001",
"CSAFPID-32002",
"CSAFPID-32003"
],
"known_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005",
"CSAFPID-31006"
],
"last_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "mitigation",
"details": "The CDC 90 device is not designed for network connectivity by default. Since it is not connected to a network, the vulnerabilities cannot be exploited. However, if the customer chooses to connect the device to a network, the default firewall settings should be maintained, as this will mitigate the security vulnerabilities. \n\n \n\nFor the CC 100 and PFC 200 devices, ensure that the default firewall settings remain intact and that both PLC Runtime and PLC WebVisu are disabled. This configuration effectively mitigates the identified security vulnerabilities.",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "Although the CDC 90 device is typically not connected to a network, making exploitation of the vulnerabilities unlikely, Endress+Hauser has provided an update to eliminate the vulnerabilities should the device be connected. \n\n \n\nFor the CC 100 and PFC 200 devices, Endress+Hauser provides updated firmware that incorporates WAGO\u0027s security fixes for the identified vulnerabilities. Customers are advised to update to the latest version.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 8.8,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 8.8,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005",
"CSAFPID-31006"
]
}
],
"title": "CVE-2022-47389"
},
{
"cve": "CVE-2022-47390",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"audience": "all",
"category": "description",
"text": "An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-32001",
"CSAFPID-32002",
"CSAFPID-32003"
],
"known_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005",
"CSAFPID-31006"
],
"last_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "mitigation",
"details": "The CDC 90 device is not designed for network connectivity by default. Since it is not connected to a network, the vulnerabilities cannot be exploited. However, if the customer chooses to connect the device to a network, the default firewall settings should be maintained, as this will mitigate the security vulnerabilities. \n\n \n\nFor the CC 100 and PFC 200 devices, ensure that the default firewall settings remain intact and that both PLC Runtime and PLC WebVisu are disabled. This configuration effectively mitigates the identified security vulnerabilities.",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "Although the CDC 90 device is typically not connected to a network, making exploitation of the vulnerabilities unlikely, Endress+Hauser has provided an update to eliminate the vulnerabilities should the device be connected. \n\n \n\nFor the CC 100 and PFC 200 devices, Endress+Hauser provides updated firmware that incorporates WAGO\u0027s security fixes for the identified vulnerabilities. Customers are advised to update to the latest version.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 8.8,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 8.8,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005",
"CSAFPID-31006"
]
}
],
"title": "CVE-2022-47390"
},
{
"cve": "CVE-2022-47391",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"audience": "all",
"category": "description",
"text": "In multiple CODESYS products in multiple versions an unauthorized, remote attacker may use a improper input validation vulnerability to read from invalid addresses leading to a denial of service.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-32001",
"CSAFPID-32002",
"CSAFPID-32003"
],
"known_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005",
"CSAFPID-31006"
],
"last_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "mitigation",
"details": "The CDC 90 device is not designed for network connectivity by default. Since it is not connected to a network, the vulnerabilities cannot be exploited. However, if the customer chooses to connect the device to a network, the default firewall settings should be maintained, as this will mitigate the security vulnerabilities. \n\n \n\nFor the CC 100 and PFC 200 devices, ensure that the default firewall settings remain intact and that both PLC Runtime and PLC WebVisu are disabled. This configuration effectively mitigates the identified security vulnerabilities.",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "Although the CDC 90 device is typically not connected to a network, making exploitation of the vulnerabilities unlikely, Endress+Hauser has provided an update to eliminate the vulnerabilities should the device be connected. \n\n \n\nFor the CC 100 and PFC 200 devices, Endress+Hauser provides updated firmware that incorporates WAGO\u0027s security fixes for the identified vulnerabilities. Customers are advised to update to the latest version.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005",
"CSAFPID-31006"
]
}
],
"title": "CVE-2022-47391"
},
{
"cve": "CVE-2022-47392",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"audience": "all",
"category": "description",
"text": "An authenticated, remote attacker may use a improper input validation vulnerability in the CmpApp/CmpAppBP/CmpAppForce Components of multiple CODESYS products in multiple versions to read from an invalid address which can lead to a denial-of-service condition.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-32001",
"CSAFPID-32002",
"CSAFPID-32003"
],
"known_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005",
"CSAFPID-31006"
],
"last_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "mitigation",
"details": "The CDC 90 device is not designed for network connectivity by default. Since it is not connected to a network, the vulnerabilities cannot be exploited. However, if the customer chooses to connect the device to a network, the default firewall settings should be maintained, as this will mitigate the security vulnerabilities. \n\n \n\nFor the CC 100 and PFC 200 devices, ensure that the default firewall settings remain intact and that both PLC Runtime and PLC WebVisu are disabled. This configuration effectively mitigates the identified security vulnerabilities.",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "Although the CDC 90 device is typically not connected to a network, making exploitation of the vulnerabilities unlikely, Endress+Hauser has provided an update to eliminate the vulnerabilities should the device be connected. \n\n \n\nFor the CC 100 and PFC 200 devices, Endress+Hauser provides updated firmware that incorporates WAGO\u0027s security fixes for the identified vulnerabilities. Customers are advised to update to the latest version.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 6.5,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 6.5,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005",
"CSAFPID-31006"
]
}
],
"title": "CVE-2022-47392"
},
{
"cve": "CVE-2022-47393",
"cwe": {
"id": "CWE-119",
"name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
},
"notes": [
{
"audience": "all",
"category": "description",
"text": "An authenticated, remote attacker may use a Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple versions of multiple CODESYS products to force a denial-of-service situation.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-32001",
"CSAFPID-32002",
"CSAFPID-32003"
],
"known_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005",
"CSAFPID-31006"
],
"last_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "mitigation",
"details": "The CDC 90 device is not designed for network connectivity by default. Since it is not connected to a network, the vulnerabilities cannot be exploited. However, if the customer chooses to connect the device to a network, the default firewall settings should be maintained, as this will mitigate the security vulnerabilities. \n\n \n\nFor the CC 100 and PFC 200 devices, ensure that the default firewall settings remain intact and that both PLC Runtime and PLC WebVisu are disabled. This configuration effectively mitigates the identified security vulnerabilities.",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "Although the CDC 90 device is typically not connected to a network, making exploitation of the vulnerabilities unlikely, Endress+Hauser has provided an update to eliminate the vulnerabilities should the device be connected. \n\n \n\nFor the CC 100 and PFC 200 devices, Endress+Hauser provides updated firmware that incorporates WAGO\u0027s security fixes for the identified vulnerabilities. Customers are advised to update to the latest version.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 6.5,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 6.5,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005",
"CSAFPID-31006"
]
}
],
"title": "CVE-2022-47393"
}
]
}
WID-SEC-W-2024-0134
Vulnerability from csaf_certbund - Published: 2024-01-16 23:00 - Updated: 2024-01-16 23:00Summary
ABB AC-500: Mehrere Schwachstellen ermöglichen Denial of Service
Severity
Mittel
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung: Die ABB AC-500 ist eine speicherprogrammierbare Steuerung (SPS).
Angriff: Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in ABB AC-500 ausnutzen, um einen Denial of Service Angriff durchzuführen.
Betroffene Betriebssysteme: - BIOS/Firmware
In ABB AC-500 existieren mehrere Schwachstellen. Diese sind unter anderem auf Fehler bei der Validierung von Daten und Eingaben, Out-of-Bounds-Schreibfehler sowie Fehler bei der Zugriffsbeschränkung zurückzuführen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Zustand herbeizuführen.
In ABB AC-500 existieren mehrere Schwachstellen. Diese sind unter anderem auf Fehler bei der Validierung von Daten und Eingaben, Out-of-Bounds-Schreibfehler sowie Fehler bei der Zugriffsbeschränkung zurückzuführen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Zustand herbeizuführen.
In ABB AC-500 existieren mehrere Schwachstellen. Diese sind unter anderem auf Fehler bei der Validierung von Daten und Eingaben, Out-of-Bounds-Schreibfehler sowie Fehler bei der Zugriffsbeschränkung zurückzuführen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Zustand herbeizuführen.
In ABB AC-500 existieren mehrere Schwachstellen. Diese sind unter anderem auf Fehler bei der Validierung von Daten und Eingaben, Out-of-Bounds-Schreibfehler sowie Fehler bei der Zugriffsbeschränkung zurückzuführen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Zustand herbeizuführen.
In ABB AC-500 existieren mehrere Schwachstellen. Diese sind unter anderem auf Fehler bei der Validierung von Daten und Eingaben, Out-of-Bounds-Schreibfehler sowie Fehler bei der Zugriffsbeschränkung zurückzuführen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Zustand herbeizuführen.
In ABB AC-500 existieren mehrere Schwachstellen. Diese sind unter anderem auf Fehler bei der Validierung von Daten und Eingaben, Out-of-Bounds-Schreibfehler sowie Fehler bei der Zugriffsbeschränkung zurückzuführen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Zustand herbeizuführen.
In ABB AC-500 existieren mehrere Schwachstellen. Diese sind unter anderem auf Fehler bei der Validierung von Daten und Eingaben, Out-of-Bounds-Schreibfehler sowie Fehler bei der Zugriffsbeschränkung zurückzuführen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Zustand herbeizuführen.
In ABB AC-500 existieren mehrere Schwachstellen. Diese sind unter anderem auf Fehler bei der Validierung von Daten und Eingaben, Out-of-Bounds-Schreibfehler sowie Fehler bei der Zugriffsbeschränkung zurückzuführen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Zustand herbeizuführen.
In ABB AC-500 existieren mehrere Schwachstellen. Diese sind unter anderem auf Fehler bei der Validierung von Daten und Eingaben, Out-of-Bounds-Schreibfehler sowie Fehler bei der Zugriffsbeschränkung zurückzuführen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Zustand herbeizuführen.
In ABB AC-500 existieren mehrere Schwachstellen. Diese sind unter anderem auf Fehler bei der Validierung von Daten und Eingaben, Out-of-Bounds-Schreibfehler sowie Fehler bei der Zugriffsbeschränkung zurückzuführen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Zustand herbeizuführen.
In ABB AC-500 existieren mehrere Schwachstellen. Diese sind unter anderem auf Fehler bei der Validierung von Daten und Eingaben, Out-of-Bounds-Schreibfehler sowie Fehler bei der Zugriffsbeschränkung zurückzuführen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Zustand herbeizuführen.
In ABB AC-500 existieren mehrere Schwachstellen. Diese sind unter anderem auf Fehler bei der Validierung von Daten und Eingaben, Out-of-Bounds-Schreibfehler sowie Fehler bei der Zugriffsbeschränkung zurückzuführen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Zustand herbeizuführen.
In ABB AC-500 existieren mehrere Schwachstellen. Diese sind unter anderem auf Fehler bei der Validierung von Daten und Eingaben, Out-of-Bounds-Schreibfehler sowie Fehler bei der Zugriffsbeschränkung zurückzuführen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Zustand herbeizuführen.
In ABB AC-500 existieren mehrere Schwachstellen. Diese sind unter anderem auf Fehler bei der Validierung von Daten und Eingaben, Out-of-Bounds-Schreibfehler sowie Fehler bei der Zugriffsbeschränkung zurückzuführen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Zustand herbeizuführen.
In ABB AC-500 existieren mehrere Schwachstellen. Diese sind unter anderem auf Fehler bei der Validierung von Daten und Eingaben, Out-of-Bounds-Schreibfehler sowie Fehler bei der Zugriffsbeschränkung zurückzuführen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Zustand herbeizuführen.
In ABB AC-500 existieren mehrere Schwachstellen. Diese sind unter anderem auf Fehler bei der Validierung von Daten und Eingaben, Out-of-Bounds-Schreibfehler sowie Fehler bei der Zugriffsbeschränkung zurückzuführen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Zustand herbeizuführen.
References
3 references
{
"document": {
"aggregate_severity": {
"text": "mittel"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Die ABB AC-500 ist eine speicherprogrammierbare Steuerung (SPS).",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in ABB AC-500 ausnutzen, um einen Denial of Service Angriff durchzuf\u00fchren.",
"title": "Angriff"
},
{
"category": "general",
"text": "- BIOS/Firmware",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2024-0134 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0134.json"
},
{
"category": "self",
"summary": "WID-SEC-2024-0134 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0134"
},
{
"category": "external",
"summary": "ABB Cyber Security Advisory vom 2024-01-16",
"url": "https://search.abb.com/library/Download.aspx?Action=Launch\u0026DocumentID=3ADR011264"
}
],
"source_lang": "en-US",
"title": "ABB AC-500: Mehrere Schwachstellen erm\u00f6glichen Denial of Service",
"tracking": {
"current_release_date": "2024-01-16T23:00:00.000+00:00",
"generator": {
"date": "2024-08-15T18:03:53.798+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.5"
}
},
"id": "WID-SEC-W-2024-0134",
"initial_release_date": "2024-01-16T23:00:00.000+00:00",
"revision_history": [
{
"date": "2024-01-16T23:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "ABB AC-500 \u003c v3_3.7.0",
"product": {
"name": "ABB AC-500 \u003c v3_3.7.0",
"product_id": "T029732",
"product_identification_helper": {
"cpe": "cpe:/h:abb:ac-500:v3_3.7.0"
}
}
}
],
"category": "vendor",
"name": "ABB"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-37559",
"notes": [
{
"category": "description",
"text": "In ABB AC-500 existieren mehrere Schwachstellen. Diese sind unter anderem auf Fehler bei der Validierung von Daten und Eingaben, Out-of-Bounds-Schreibfehler sowie Fehler bei der Zugriffsbeschr\u00e4nkung zur\u00fcckzuf\u00fchren. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Zustand herbeizuf\u00fchren."
}
],
"release_date": "2024-01-16T23:00:00.000+00:00",
"title": "CVE-2023-37559"
},
{
"cve": "CVE-2023-37558",
"notes": [
{
"category": "description",
"text": "In ABB AC-500 existieren mehrere Schwachstellen. Diese sind unter anderem auf Fehler bei der Validierung von Daten und Eingaben, Out-of-Bounds-Schreibfehler sowie Fehler bei der Zugriffsbeschr\u00e4nkung zur\u00fcckzuf\u00fchren. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Zustand herbeizuf\u00fchren."
}
],
"release_date": "2024-01-16T23:00:00.000+00:00",
"title": "CVE-2023-37558"
},
{
"cve": "CVE-2023-37557",
"notes": [
{
"category": "description",
"text": "In ABB AC-500 existieren mehrere Schwachstellen. Diese sind unter anderem auf Fehler bei der Validierung von Daten und Eingaben, Out-of-Bounds-Schreibfehler sowie Fehler bei der Zugriffsbeschr\u00e4nkung zur\u00fcckzuf\u00fchren. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Zustand herbeizuf\u00fchren."
}
],
"release_date": "2024-01-16T23:00:00.000+00:00",
"title": "CVE-2023-37557"
},
{
"cve": "CVE-2023-37556",
"notes": [
{
"category": "description",
"text": "In ABB AC-500 existieren mehrere Schwachstellen. Diese sind unter anderem auf Fehler bei der Validierung von Daten und Eingaben, Out-of-Bounds-Schreibfehler sowie Fehler bei der Zugriffsbeschr\u00e4nkung zur\u00fcckzuf\u00fchren. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Zustand herbeizuf\u00fchren."
}
],
"release_date": "2024-01-16T23:00:00.000+00:00",
"title": "CVE-2023-37556"
},
{
"cve": "CVE-2023-37555",
"notes": [
{
"category": "description",
"text": "In ABB AC-500 existieren mehrere Schwachstellen. Diese sind unter anderem auf Fehler bei der Validierung von Daten und Eingaben, Out-of-Bounds-Schreibfehler sowie Fehler bei der Zugriffsbeschr\u00e4nkung zur\u00fcckzuf\u00fchren. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Zustand herbeizuf\u00fchren."
}
],
"release_date": "2024-01-16T23:00:00.000+00:00",
"title": "CVE-2023-37555"
},
{
"cve": "CVE-2023-37554",
"notes": [
{
"category": "description",
"text": "In ABB AC-500 existieren mehrere Schwachstellen. Diese sind unter anderem auf Fehler bei der Validierung von Daten und Eingaben, Out-of-Bounds-Schreibfehler sowie Fehler bei der Zugriffsbeschr\u00e4nkung zur\u00fcckzuf\u00fchren. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Zustand herbeizuf\u00fchren."
}
],
"release_date": "2024-01-16T23:00:00.000+00:00",
"title": "CVE-2023-37554"
},
{
"cve": "CVE-2023-37553",
"notes": [
{
"category": "description",
"text": "In ABB AC-500 existieren mehrere Schwachstellen. Diese sind unter anderem auf Fehler bei der Validierung von Daten und Eingaben, Out-of-Bounds-Schreibfehler sowie Fehler bei der Zugriffsbeschr\u00e4nkung zur\u00fcckzuf\u00fchren. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Zustand herbeizuf\u00fchren."
}
],
"release_date": "2024-01-16T23:00:00.000+00:00",
"title": "CVE-2023-37553"
},
{
"cve": "CVE-2023-37552",
"notes": [
{
"category": "description",
"text": "In ABB AC-500 existieren mehrere Schwachstellen. Diese sind unter anderem auf Fehler bei der Validierung von Daten und Eingaben, Out-of-Bounds-Schreibfehler sowie Fehler bei der Zugriffsbeschr\u00e4nkung zur\u00fcckzuf\u00fchren. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Zustand herbeizuf\u00fchren."
}
],
"release_date": "2024-01-16T23:00:00.000+00:00",
"title": "CVE-2023-37552"
},
{
"cve": "CVE-2023-37551",
"notes": [
{
"category": "description",
"text": "In ABB AC-500 existieren mehrere Schwachstellen. Diese sind unter anderem auf Fehler bei der Validierung von Daten und Eingaben, Out-of-Bounds-Schreibfehler sowie Fehler bei der Zugriffsbeschr\u00e4nkung zur\u00fcckzuf\u00fchren. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Zustand herbeizuf\u00fchren."
}
],
"release_date": "2024-01-16T23:00:00.000+00:00",
"title": "CVE-2023-37551"
},
{
"cve": "CVE-2023-37550",
"notes": [
{
"category": "description",
"text": "In ABB AC-500 existieren mehrere Schwachstellen. Diese sind unter anderem auf Fehler bei der Validierung von Daten und Eingaben, Out-of-Bounds-Schreibfehler sowie Fehler bei der Zugriffsbeschr\u00e4nkung zur\u00fcckzuf\u00fchren. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Zustand herbeizuf\u00fchren."
}
],
"release_date": "2024-01-16T23:00:00.000+00:00",
"title": "CVE-2023-37550"
},
{
"cve": "CVE-2023-37549",
"notes": [
{
"category": "description",
"text": "In ABB AC-500 existieren mehrere Schwachstellen. Diese sind unter anderem auf Fehler bei der Validierung von Daten und Eingaben, Out-of-Bounds-Schreibfehler sowie Fehler bei der Zugriffsbeschr\u00e4nkung zur\u00fcckzuf\u00fchren. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Zustand herbeizuf\u00fchren."
}
],
"release_date": "2024-01-16T23:00:00.000+00:00",
"title": "CVE-2023-37549"
},
{
"cve": "CVE-2023-37548",
"notes": [
{
"category": "description",
"text": "In ABB AC-500 existieren mehrere Schwachstellen. Diese sind unter anderem auf Fehler bei der Validierung von Daten und Eingaben, Out-of-Bounds-Schreibfehler sowie Fehler bei der Zugriffsbeschr\u00e4nkung zur\u00fcckzuf\u00fchren. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Zustand herbeizuf\u00fchren."
}
],
"release_date": "2024-01-16T23:00:00.000+00:00",
"title": "CVE-2023-37548"
},
{
"cve": "CVE-2023-37547",
"notes": [
{
"category": "description",
"text": "In ABB AC-500 existieren mehrere Schwachstellen. Diese sind unter anderem auf Fehler bei der Validierung von Daten und Eingaben, Out-of-Bounds-Schreibfehler sowie Fehler bei der Zugriffsbeschr\u00e4nkung zur\u00fcckzuf\u00fchren. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Zustand herbeizuf\u00fchren."
}
],
"release_date": "2024-01-16T23:00:00.000+00:00",
"title": "CVE-2023-37547"
},
{
"cve": "CVE-2023-37546",
"notes": [
{
"category": "description",
"text": "In ABB AC-500 existieren mehrere Schwachstellen. Diese sind unter anderem auf Fehler bei der Validierung von Daten und Eingaben, Out-of-Bounds-Schreibfehler sowie Fehler bei der Zugriffsbeschr\u00e4nkung zur\u00fcckzuf\u00fchren. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Zustand herbeizuf\u00fchren."
}
],
"release_date": "2024-01-16T23:00:00.000+00:00",
"title": "CVE-2023-37546"
},
{
"cve": "CVE-2023-37545",
"notes": [
{
"category": "description",
"text": "In ABB AC-500 existieren mehrere Schwachstellen. Diese sind unter anderem auf Fehler bei der Validierung von Daten und Eingaben, Out-of-Bounds-Schreibfehler sowie Fehler bei der Zugriffsbeschr\u00e4nkung zur\u00fcckzuf\u00fchren. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Zustand herbeizuf\u00fchren."
}
],
"release_date": "2024-01-16T23:00:00.000+00:00",
"title": "CVE-2023-37545"
},
{
"cve": "CVE-2022-47391",
"notes": [
{
"category": "description",
"text": "In ABB AC-500 existieren mehrere Schwachstellen. Diese sind unter anderem auf Fehler bei der Validierung von Daten und Eingaben, Out-of-Bounds-Schreibfehler sowie Fehler bei der Zugriffsbeschr\u00e4nkung zur\u00fcckzuf\u00fchren. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Zustand herbeizuf\u00fchren."
}
],
"release_date": "2024-01-16T23:00:00.000+00:00",
"title": "CVE-2022-47391"
}
]
}
WID-SEC-W-2024-0943
Vulnerability from csaf_certbund - Published: 2024-04-21 22:00 - Updated: 2025-01-07 23:00Summary
CODESYS: Mehrere Schwachstellen
Severity
Hoch
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung: CODESYS ist eine herstellerunabhängige Automatisierungssoftware für die Entwicklung von Steuerungsanwendungen in der industriellen Automatisierung.
Angriff: Ein Angreifer kann mehrere Schwachstellen in CODESYS ausnutzen, um beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand herbeizuführen, vertrauliche Informationen offenzulegen, Dateien zu manipulieren oder einen Brute-Force-Angriff durchzuführen.
Betroffene Betriebssysteme: - Sonstiges
Es bestehen mehrere Schwachstellen in CODESYS. Diese Fehler bestehen in mehreren Komponenten und Subsystemen wie dem Control, Development System oder dem SysDrv3S.sys-Treiber, unter anderem aufgrund mehrerer sicherheitsrelevanter Probleme wie einer OS-Befehlsinjektion, einem Out-of-bounds-Write oder einer unzulässigen Einschränkung von Authentifizierungsversuchen. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen, Dateien zu manipulieren oder Brute-Force-Angriffe durchzuführen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion oder eine Anmeldung, um erfolgreich ausgenutzt zu werden.
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
CODESYS CODESYS
CODESYS
|
cpe:/a:codesys:codesys:-
|
— | |
|
ABB AC-500 <3.8.0
ABB / AC-500
|
<3.8.0 |
Es bestehen mehrere Schwachstellen in CODESYS. Diese Fehler bestehen in mehreren Komponenten und Subsystemen wie dem Control, Development System oder dem SysDrv3S.sys-Treiber, unter anderem aufgrund mehrerer sicherheitsrelevanter Probleme wie einer OS-Befehlsinjektion, einem Out-of-bounds-Write oder einer unzulässigen Einschränkung von Authentifizierungsversuchen. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen, Dateien zu manipulieren oder Brute-Force-Angriffe durchzuführen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion oder eine Anmeldung, um erfolgreich ausgenutzt zu werden.
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
CODESYS CODESYS
CODESYS
|
cpe:/a:codesys:codesys:-
|
— | |
|
ABB AC-500 <3.8.0
ABB / AC-500
|
<3.8.0 |
Es bestehen mehrere Schwachstellen in CODESYS. Diese Fehler bestehen in mehreren Komponenten und Subsystemen wie dem Control, Development System oder dem SysDrv3S.sys-Treiber, unter anderem aufgrund mehrerer sicherheitsrelevanter Probleme wie einer OS-Befehlsinjektion, einem Out-of-bounds-Write oder einer unzulässigen Einschränkung von Authentifizierungsversuchen. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen, Dateien zu manipulieren oder Brute-Force-Angriffe durchzuführen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion oder eine Anmeldung, um erfolgreich ausgenutzt zu werden.
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
CODESYS CODESYS
CODESYS
|
cpe:/a:codesys:codesys:-
|
— | |
|
ABB AC-500 <3.8.0
ABB / AC-500
|
<3.8.0 |
Es bestehen mehrere Schwachstellen in CODESYS. Diese Fehler bestehen in mehreren Komponenten und Subsystemen wie dem Control, Development System oder dem SysDrv3S.sys-Treiber, unter anderem aufgrund mehrerer sicherheitsrelevanter Probleme wie einer OS-Befehlsinjektion, einem Out-of-bounds-Write oder einer unzulässigen Einschränkung von Authentifizierungsversuchen. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen, Dateien zu manipulieren oder Brute-Force-Angriffe durchzuführen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion oder eine Anmeldung, um erfolgreich ausgenutzt zu werden.
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
CODESYS CODESYS
CODESYS
|
cpe:/a:codesys:codesys:-
|
— | |
|
ABB AC-500 <3.8.0
ABB / AC-500
|
<3.8.0 |
Es bestehen mehrere Schwachstellen in CODESYS. Diese Fehler bestehen in mehreren Komponenten und Subsystemen wie dem Control, Development System oder dem SysDrv3S.sys-Treiber, unter anderem aufgrund mehrerer sicherheitsrelevanter Probleme wie einer OS-Befehlsinjektion, einem Out-of-bounds-Write oder einer unzulässigen Einschränkung von Authentifizierungsversuchen. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen, Dateien zu manipulieren oder Brute-Force-Angriffe durchzuführen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion oder eine Anmeldung, um erfolgreich ausgenutzt zu werden.
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
CODESYS CODESYS
CODESYS
|
cpe:/a:codesys:codesys:-
|
— | |
|
ABB AC-500 <3.8.0
ABB / AC-500
|
<3.8.0 |
Es bestehen mehrere Schwachstellen in CODESYS. Diese Fehler bestehen in mehreren Komponenten und Subsystemen wie dem Control, Development System oder dem SysDrv3S.sys-Treiber, unter anderem aufgrund mehrerer sicherheitsrelevanter Probleme wie einer OS-Befehlsinjektion, einem Out-of-bounds-Write oder einer unzulässigen Einschränkung von Authentifizierungsversuchen. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen, Dateien zu manipulieren oder Brute-Force-Angriffe durchzuführen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion oder eine Anmeldung, um erfolgreich ausgenutzt zu werden.
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
CODESYS CODESYS
CODESYS
|
cpe:/a:codesys:codesys:-
|
— | |
|
ABB AC-500 <3.8.0
ABB / AC-500
|
<3.8.0 |
Es bestehen mehrere Schwachstellen in CODESYS. Diese Fehler bestehen in mehreren Komponenten und Subsystemen wie dem Control, Development System oder dem SysDrv3S.sys-Treiber, unter anderem aufgrund mehrerer sicherheitsrelevanter Probleme wie einer OS-Befehlsinjektion, einem Out-of-bounds-Write oder einer unzulässigen Einschränkung von Authentifizierungsversuchen. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen, Dateien zu manipulieren oder Brute-Force-Angriffe durchzuführen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion oder eine Anmeldung, um erfolgreich ausgenutzt zu werden.
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
CODESYS CODESYS
CODESYS
|
cpe:/a:codesys:codesys:-
|
— | |
|
ABB AC-500 <3.8.0
ABB / AC-500
|
<3.8.0 |
Es bestehen mehrere Schwachstellen in CODESYS. Diese Fehler bestehen in mehreren Komponenten und Subsystemen wie dem Control, Development System oder dem SysDrv3S.sys-Treiber, unter anderem aufgrund mehrerer sicherheitsrelevanter Probleme wie einer OS-Befehlsinjektion, einem Out-of-bounds-Write oder einer unzulässigen Einschränkung von Authentifizierungsversuchen. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen, Dateien zu manipulieren oder Brute-Force-Angriffe durchzuführen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion oder eine Anmeldung, um erfolgreich ausgenutzt zu werden.
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
CODESYS CODESYS
CODESYS
|
cpe:/a:codesys:codesys:-
|
— | |
|
ABB AC-500 <3.8.0
ABB / AC-500
|
<3.8.0 |
Es bestehen mehrere Schwachstellen in CODESYS. Diese Fehler bestehen in mehreren Komponenten und Subsystemen wie dem Control, Development System oder dem SysDrv3S.sys-Treiber, unter anderem aufgrund mehrerer sicherheitsrelevanter Probleme wie einer OS-Befehlsinjektion, einem Out-of-bounds-Write oder einer unzulässigen Einschränkung von Authentifizierungsversuchen. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen, Dateien zu manipulieren oder Brute-Force-Angriffe durchzuführen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion oder eine Anmeldung, um erfolgreich ausgenutzt zu werden.
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
CODESYS CODESYS
CODESYS
|
cpe:/a:codesys:codesys:-
|
— | |
|
ABB AC-500 <3.8.0
ABB / AC-500
|
<3.8.0 |
Es bestehen mehrere Schwachstellen in CODESYS. Diese Fehler bestehen in mehreren Komponenten und Subsystemen wie dem Control, Development System oder dem SysDrv3S.sys-Treiber, unter anderem aufgrund mehrerer sicherheitsrelevanter Probleme wie einer OS-Befehlsinjektion, einem Out-of-bounds-Write oder einer unzulässigen Einschränkung von Authentifizierungsversuchen. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen, Dateien zu manipulieren oder Brute-Force-Angriffe durchzuführen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion oder eine Anmeldung, um erfolgreich ausgenutzt zu werden.
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
CODESYS CODESYS
CODESYS
|
cpe:/a:codesys:codesys:-
|
— | |
|
ABB AC-500 <3.8.0
ABB / AC-500
|
<3.8.0 |
Es bestehen mehrere Schwachstellen in CODESYS. Diese Fehler bestehen in mehreren Komponenten und Subsystemen wie dem Control, Development System oder dem SysDrv3S.sys-Treiber, unter anderem aufgrund mehrerer sicherheitsrelevanter Probleme wie einer OS-Befehlsinjektion, einem Out-of-bounds-Write oder einer unzulässigen Einschränkung von Authentifizierungsversuchen. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen, Dateien zu manipulieren oder Brute-Force-Angriffe durchzuführen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion oder eine Anmeldung, um erfolgreich ausgenutzt zu werden.
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
CODESYS CODESYS
CODESYS
|
cpe:/a:codesys:codesys:-
|
— | |
|
ABB AC-500 <3.8.0
ABB / AC-500
|
<3.8.0 |
Es bestehen mehrere Schwachstellen in CODESYS. Diese Fehler bestehen in mehreren Komponenten und Subsystemen wie dem Control, Development System oder dem SysDrv3S.sys-Treiber, unter anderem aufgrund mehrerer sicherheitsrelevanter Probleme wie einer OS-Befehlsinjektion, einem Out-of-bounds-Write oder einer unzulässigen Einschränkung von Authentifizierungsversuchen. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen, Dateien zu manipulieren oder Brute-Force-Angriffe durchzuführen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion oder eine Anmeldung, um erfolgreich ausgenutzt zu werden.
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
CODESYS CODESYS
CODESYS
|
cpe:/a:codesys:codesys:-
|
— | |
|
ABB AC-500 <3.8.0
ABB / AC-500
|
<3.8.0 |
Es bestehen mehrere Schwachstellen in CODESYS. Diese Fehler bestehen in mehreren Komponenten und Subsystemen wie dem Control, Development System oder dem SysDrv3S.sys-Treiber, unter anderem aufgrund mehrerer sicherheitsrelevanter Probleme wie einer OS-Befehlsinjektion, einem Out-of-bounds-Write oder einer unzulässigen Einschränkung von Authentifizierungsversuchen. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen, Dateien zu manipulieren oder Brute-Force-Angriffe durchzuführen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion oder eine Anmeldung, um erfolgreich ausgenutzt zu werden.
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
CODESYS CODESYS
CODESYS
|
cpe:/a:codesys:codesys:-
|
— | |
|
ABB AC-500 <3.8.0
ABB / AC-500
|
<3.8.0 |
Es bestehen mehrere Schwachstellen in CODESYS. Diese Fehler bestehen in mehreren Komponenten und Subsystemen wie dem Control, Development System oder dem SysDrv3S.sys-Treiber, unter anderem aufgrund mehrerer sicherheitsrelevanter Probleme wie einer OS-Befehlsinjektion, einem Out-of-bounds-Write oder einer unzulässigen Einschränkung von Authentifizierungsversuchen. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen, Dateien zu manipulieren oder Brute-Force-Angriffe durchzuführen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion oder eine Anmeldung, um erfolgreich ausgenutzt zu werden.
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
CODESYS CODESYS
CODESYS
|
cpe:/a:codesys:codesys:-
|
— | |
|
ABB AC-500 <3.8.0
ABB / AC-500
|
<3.8.0 |
Es bestehen mehrere Schwachstellen in CODESYS. Diese Fehler bestehen in mehreren Komponenten und Subsystemen wie dem Control, Development System oder dem SysDrv3S.sys-Treiber, unter anderem aufgrund mehrerer sicherheitsrelevanter Probleme wie einer OS-Befehlsinjektion, einem Out-of-bounds-Write oder einer unzulässigen Einschränkung von Authentifizierungsversuchen. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen, Dateien zu manipulieren oder Brute-Force-Angriffe durchzuführen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion oder eine Anmeldung, um erfolgreich ausgenutzt zu werden.
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
CODESYS CODESYS
CODESYS
|
cpe:/a:codesys:codesys:-
|
— | |
|
ABB AC-500 <3.8.0
ABB / AC-500
|
<3.8.0 |
Es bestehen mehrere Schwachstellen in CODESYS. Diese Fehler bestehen in mehreren Komponenten und Subsystemen wie dem Control, Development System oder dem SysDrv3S.sys-Treiber, unter anderem aufgrund mehrerer sicherheitsrelevanter Probleme wie einer OS-Befehlsinjektion, einem Out-of-bounds-Write oder einer unzulässigen Einschränkung von Authentifizierungsversuchen. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen, Dateien zu manipulieren oder Brute-Force-Angriffe durchzuführen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion oder eine Anmeldung, um erfolgreich ausgenutzt zu werden.
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
CODESYS CODESYS
CODESYS
|
cpe:/a:codesys:codesys:-
|
— | |
|
ABB AC-500 <3.8.0
ABB / AC-500
|
<3.8.0 |
Es bestehen mehrere Schwachstellen in CODESYS. Diese Fehler bestehen in mehreren Komponenten und Subsystemen wie dem Control, Development System oder dem SysDrv3S.sys-Treiber, unter anderem aufgrund mehrerer sicherheitsrelevanter Probleme wie einer OS-Befehlsinjektion, einem Out-of-bounds-Write oder einer unzulässigen Einschränkung von Authentifizierungsversuchen. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen, Dateien zu manipulieren oder Brute-Force-Angriffe durchzuführen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion oder eine Anmeldung, um erfolgreich ausgenutzt zu werden.
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
CODESYS CODESYS
CODESYS
|
cpe:/a:codesys:codesys:-
|
— | |
|
ABB AC-500 <3.8.0
ABB / AC-500
|
<3.8.0 |
Es bestehen mehrere Schwachstellen in CODESYS. Diese Fehler bestehen in mehreren Komponenten und Subsystemen wie dem Control, Development System oder dem SysDrv3S.sys-Treiber, unter anderem aufgrund mehrerer sicherheitsrelevanter Probleme wie einer OS-Befehlsinjektion, einem Out-of-bounds-Write oder einer unzulässigen Einschränkung von Authentifizierungsversuchen. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen, Dateien zu manipulieren oder Brute-Force-Angriffe durchzuführen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion oder eine Anmeldung, um erfolgreich ausgenutzt zu werden.
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
CODESYS CODESYS
CODESYS
|
cpe:/a:codesys:codesys:-
|
— | |
|
ABB AC-500 <3.8.0
ABB / AC-500
|
<3.8.0 |
Es bestehen mehrere Schwachstellen in CODESYS. Diese Fehler bestehen in mehreren Komponenten und Subsystemen wie dem Control, Development System oder dem SysDrv3S.sys-Treiber, unter anderem aufgrund mehrerer sicherheitsrelevanter Probleme wie einer OS-Befehlsinjektion, einem Out-of-bounds-Write oder einer unzulässigen Einschränkung von Authentifizierungsversuchen. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen, Dateien zu manipulieren oder Brute-Force-Angriffe durchzuführen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion oder eine Anmeldung, um erfolgreich ausgenutzt zu werden.
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
CODESYS CODESYS
CODESYS
|
cpe:/a:codesys:codesys:-
|
— | |
|
ABB AC-500 <3.8.0
ABB / AC-500
|
<3.8.0 |
Es bestehen mehrere Schwachstellen in CODESYS. Diese Fehler bestehen in mehreren Komponenten und Subsystemen wie dem Control, Development System oder dem SysDrv3S.sys-Treiber, unter anderem aufgrund mehrerer sicherheitsrelevanter Probleme wie einer OS-Befehlsinjektion, einem Out-of-bounds-Write oder einer unzulässigen Einschränkung von Authentifizierungsversuchen. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen, Dateien zu manipulieren oder Brute-Force-Angriffe durchzuführen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion oder eine Anmeldung, um erfolgreich ausgenutzt zu werden.
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
CODESYS CODESYS
CODESYS
|
cpe:/a:codesys:codesys:-
|
— | |
|
ABB AC-500 <3.8.0
ABB / AC-500
|
<3.8.0 |
Es bestehen mehrere Schwachstellen in CODESYS. Diese Fehler bestehen in mehreren Komponenten und Subsystemen wie dem Control, Development System oder dem SysDrv3S.sys-Treiber, unter anderem aufgrund mehrerer sicherheitsrelevanter Probleme wie einer OS-Befehlsinjektion, einem Out-of-bounds-Write oder einer unzulässigen Einschränkung von Authentifizierungsversuchen. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen, Dateien zu manipulieren oder Brute-Force-Angriffe durchzuführen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion oder eine Anmeldung, um erfolgreich ausgenutzt zu werden.
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
CODESYS CODESYS
CODESYS
|
cpe:/a:codesys:codesys:-
|
— | |
|
ABB AC-500 <3.8.0
ABB / AC-500
|
<3.8.0 |
Es bestehen mehrere Schwachstellen in CODESYS. Diese Fehler bestehen in mehreren Komponenten und Subsystemen wie dem Control, Development System oder dem SysDrv3S.sys-Treiber, unter anderem aufgrund mehrerer sicherheitsrelevanter Probleme wie einer OS-Befehlsinjektion, einem Out-of-bounds-Write oder einer unzulässigen Einschränkung von Authentifizierungsversuchen. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen, Dateien zu manipulieren oder Brute-Force-Angriffe durchzuführen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion oder eine Anmeldung, um erfolgreich ausgenutzt zu werden.
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
CODESYS CODESYS
CODESYS
|
cpe:/a:codesys:codesys:-
|
— | |
|
ABB AC-500 <3.8.0
ABB / AC-500
|
<3.8.0 |
Es bestehen mehrere Schwachstellen in CODESYS. Diese Fehler bestehen in mehreren Komponenten und Subsystemen wie dem Control, Development System oder dem SysDrv3S.sys-Treiber, unter anderem aufgrund mehrerer sicherheitsrelevanter Probleme wie einer OS-Befehlsinjektion, einem Out-of-bounds-Write oder einer unzulässigen Einschränkung von Authentifizierungsversuchen. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen, Dateien zu manipulieren oder Brute-Force-Angriffe durchzuführen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion oder eine Anmeldung, um erfolgreich ausgenutzt zu werden.
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
CODESYS CODESYS
CODESYS
|
cpe:/a:codesys:codesys:-
|
— | |
|
ABB AC-500 <3.8.0
ABB / AC-500
|
<3.8.0 |
Es bestehen mehrere Schwachstellen in CODESYS. Diese Fehler bestehen in mehreren Komponenten und Subsystemen wie dem Control, Development System oder dem SysDrv3S.sys-Treiber, unter anderem aufgrund mehrerer sicherheitsrelevanter Probleme wie einer OS-Befehlsinjektion, einem Out-of-bounds-Write oder einer unzulässigen Einschränkung von Authentifizierungsversuchen. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen, Dateien zu manipulieren oder Brute-Force-Angriffe durchzuführen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion oder eine Anmeldung, um erfolgreich ausgenutzt zu werden.
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
CODESYS CODESYS
CODESYS
|
cpe:/a:codesys:codesys:-
|
— | |
|
ABB AC-500 <3.8.0
ABB / AC-500
|
<3.8.0 |
Es bestehen mehrere Schwachstellen in CODESYS. Diese Fehler bestehen in mehreren Komponenten und Subsystemen wie dem Control, Development System oder dem SysDrv3S.sys-Treiber, unter anderem aufgrund mehrerer sicherheitsrelevanter Probleme wie einer OS-Befehlsinjektion, einem Out-of-bounds-Write oder einer unzulässigen Einschränkung von Authentifizierungsversuchen. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen, Dateien zu manipulieren oder Brute-Force-Angriffe durchzuführen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion oder eine Anmeldung, um erfolgreich ausgenutzt zu werden.
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
CODESYS CODESYS
CODESYS
|
cpe:/a:codesys:codesys:-
|
— | |
|
ABB AC-500 <3.8.0
ABB / AC-500
|
<3.8.0 |
References
13 references
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "CODESYS ist eine herstellerunabh\u00e4ngige Automatisierungssoftware f\u00fcr die Entwicklung von Steuerungsanwendungen in der industriellen Automatisierung.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein Angreifer kann mehrere Schwachstellen in CODESYS ausnutzen, um beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, vertrauliche Informationen offenzulegen, Dateien zu manipulieren oder einen Brute-Force-Angriff durchzuf\u00fchren.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Sonstiges",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2024-0943 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0943.json"
},
{
"category": "self",
"summary": "WID-SEC-2024-0943 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0943"
},
{
"category": "external",
"summary": "CODESYS Advisory vom 2023-06-27",
"url": "https://customers.codesys.com/index.php?eID=dumpFile\u0026t=f\u0026f=17090\u0026token=6cd08b169916366df31388d2e7ba58e7bce93508\u0026download="
},
{
"category": "external",
"summary": "CODESYS Advisory vom 2023-04-03",
"url": "https://customers.codesys.com/index.php?eID=dumpFile\u0026t=f\u0026f=17555\u0026token=212fc7e39bdd260cab6d6ca84333d42f50bcb3da\u0026download="
},
{
"category": "external",
"summary": "CODESYS Advisory vom 2023-03-08",
"url": "https://customers.codesys.com/index.php?eID=dumpFile\u0026t=f\u0026f=17764\u0026token=4b2f3cf3a800d076b22f18d49f278bd8883dbd46\u0026download="
},
{
"category": "external",
"summary": "CODESYS Advisory vom 2023-10-31",
"url": "https://customers.codesys.com/index.php?eID=dumpFile\u0026t=f\u0026f=17765\u0026token=04e117e1408fdb8e02b4bc821aa3be819668aef4\u0026download="
},
{
"category": "external",
"summary": "CODESYS Advisory vom 2023-08-03",
"url": "https://customers.codesys.com/index.php?eID=dumpFile\u0026t=f\u0026f=17766\u0026token=667d36292e99e6f6b7eb8c0b4a86d27137c31f98\u0026download="
},
{
"category": "external",
"summary": "CODESYS Advisory vom 2023-10-31",
"url": "https://customers.codesys.com/index.php?eID=dumpFile\u0026t=f\u0026f=17767\u0026token=7ed2d9324eff98a0a319c455d0256dc7627c705e\u0026download="
},
{
"category": "external",
"summary": "CODESYS Advisory vom 2023-08-03",
"url": "https://customers.codesys.com/index.php?eID=dumpFile\u0026t=f\u0026f=17768\u0026token=9d206ea9e0449cd9d3ee60d5179d2761dad2d2dd\u0026download="
},
{
"category": "external",
"summary": "CODESYS Advisory vom 2023-07-26",
"url": "https://customers.codesys.com/index.php?eID=dumpFile\u0026t=f\u0026f=17769\u0026token=a1a34cd304aebfbc1e2619e401a9a6cb5d4dc117\u0026download="
},
{
"category": "external",
"summary": "CODESYS Advisory vom 2023-12-05",
"url": "https://customers.codesys.com/index.php?eID=dumpFile\u0026t=f\u0026f=17809\u0026token=c3b4e3ec4956099de26f0c6caf194d1ba341040a\u0026download="
},
{
"category": "external",
"summary": "CODESYS Advisory vom 2024-02-26",
"url": "https://customers.codesys.com/index.php?eID=dumpFile\u0026t=f\u0026f=18027\u0026token=43109051cf95d3445bc616e4efb8414336ebcc47\u0026download="
},
{
"category": "external",
"summary": "ABB Security Advisory vom 2025-01-07",
"url": "https://search.abb.com/library/Download.aspx?DocumentID=3ADR011377\u0026LanguageCode=en\u0026DocumentPartId=CSAF\u0026Action=Launch"
}
],
"source_lang": "en-US",
"title": "CODESYS: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2025-01-07T23:00:00.000+00:00",
"generator": {
"date": "2025-01-08T10:42:29.688+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.10"
}
},
"id": "WID-SEC-W-2024-0943",
"initial_release_date": "2024-04-21T22:00:00.000+00:00",
"revision_history": [
{
"date": "2024-04-21T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2024-04-25T22:00:00.000+00:00",
"number": "2",
"summary": "Datum der Codesys Meldungen korrigiert."
},
{
"date": "2025-01-07T23:00:00.000+00:00",
"number": "3",
"summary": "Neue Updates aufgenommen"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c3.8.0",
"product": {
"name": "ABB AC-500 \u003c3.8.0",
"product_id": "T040044"
}
},
{
"category": "product_version",
"name": "3.8.0",
"product": {
"name": "ABB AC-500 3.8.0",
"product_id": "T040044-fixed",
"product_identification_helper": {
"cpe": "cpe:/h:abb:ac-500:3.8.0"
}
}
}
],
"category": "product_name",
"name": "AC-500"
}
],
"category": "vendor",
"name": "ABB"
},
{
"branches": [
{
"category": "product_name",
"name": "CODESYS CODESYS",
"product": {
"name": "CODESYS CODESYS",
"product_id": "T034337",
"product_identification_helper": {
"cpe": "cpe:/a:codesys:codesys:-"
}
}
}
],
"category": "vendor",
"name": "CODESYS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2022-22516",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in CODESYS. Diese Fehler bestehen in mehreren Komponenten und Subsystemen wie dem Control, Development System oder dem SysDrv3S.sys-Treiber, unter anderem aufgrund mehrerer sicherheitsrelevanter Probleme wie einer OS-Befehlsinjektion, einem Out-of-bounds-Write oder einer unzul\u00e4ssigen Einschr\u00e4nkung von Authentifizierungsversuchen. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand auszul\u00f6sen, vertrauliche Informationen offenzulegen, Dateien zu manipulieren oder Brute-Force-Angriffe durchzuf\u00fchren. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion oder eine Anmeldung, um erfolgreich ausgenutzt zu werden."
}
],
"product_status": {
"known_affected": [
"T034337",
"T040044"
]
},
"release_date": "2024-04-21T22:00:00.000+00:00",
"title": "CVE-2022-22516"
},
{
"cve": "CVE-2022-4046",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in CODESYS. Diese Fehler bestehen in mehreren Komponenten und Subsystemen wie dem Control, Development System oder dem SysDrv3S.sys-Treiber, unter anderem aufgrund mehrerer sicherheitsrelevanter Probleme wie einer OS-Befehlsinjektion, einem Out-of-bounds-Write oder einer unzul\u00e4ssigen Einschr\u00e4nkung von Authentifizierungsversuchen. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand auszul\u00f6sen, vertrauliche Informationen offenzulegen, Dateien zu manipulieren oder Brute-Force-Angriffe durchzuf\u00fchren. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion oder eine Anmeldung, um erfolgreich ausgenutzt zu werden."
}
],
"product_status": {
"known_affected": [
"T034337",
"T040044"
]
},
"release_date": "2024-04-21T22:00:00.000+00:00",
"title": "CVE-2022-4046"
},
{
"cve": "CVE-2022-47391",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in CODESYS. Diese Fehler bestehen in mehreren Komponenten und Subsystemen wie dem Control, Development System oder dem SysDrv3S.sys-Treiber, unter anderem aufgrund mehrerer sicherheitsrelevanter Probleme wie einer OS-Befehlsinjektion, einem Out-of-bounds-Write oder einer unzul\u00e4ssigen Einschr\u00e4nkung von Authentifizierungsversuchen. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand auszul\u00f6sen, vertrauliche Informationen offenzulegen, Dateien zu manipulieren oder Brute-Force-Angriffe durchzuf\u00fchren. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion oder eine Anmeldung, um erfolgreich ausgenutzt zu werden."
}
],
"product_status": {
"known_affected": [
"T034337",
"T040044"
]
},
"release_date": "2024-04-21T22:00:00.000+00:00",
"title": "CVE-2022-47391"
},
{
"cve": "CVE-2023-28355",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in CODESYS. Diese Fehler bestehen in mehreren Komponenten und Subsystemen wie dem Control, Development System oder dem SysDrv3S.sys-Treiber, unter anderem aufgrund mehrerer sicherheitsrelevanter Probleme wie einer OS-Befehlsinjektion, einem Out-of-bounds-Write oder einer unzul\u00e4ssigen Einschr\u00e4nkung von Authentifizierungsversuchen. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand auszul\u00f6sen, vertrauliche Informationen offenzulegen, Dateien zu manipulieren oder Brute-Force-Angriffe durchzuf\u00fchren. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion oder eine Anmeldung, um erfolgreich ausgenutzt zu werden."
}
],
"product_status": {
"known_affected": [
"T034337",
"T040044"
]
},
"release_date": "2024-04-21T22:00:00.000+00:00",
"title": "CVE-2023-28355"
},
{
"cve": "CVE-2023-3662",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in CODESYS. Diese Fehler bestehen in mehreren Komponenten und Subsystemen wie dem Control, Development System oder dem SysDrv3S.sys-Treiber, unter anderem aufgrund mehrerer sicherheitsrelevanter Probleme wie einer OS-Befehlsinjektion, einem Out-of-bounds-Write oder einer unzul\u00e4ssigen Einschr\u00e4nkung von Authentifizierungsversuchen. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand auszul\u00f6sen, vertrauliche Informationen offenzulegen, Dateien zu manipulieren oder Brute-Force-Angriffe durchzuf\u00fchren. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion oder eine Anmeldung, um erfolgreich ausgenutzt zu werden."
}
],
"product_status": {
"known_affected": [
"T034337",
"T040044"
]
},
"release_date": "2024-04-21T22:00:00.000+00:00",
"title": "CVE-2023-3662"
},
{
"cve": "CVE-2023-3663",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in CODESYS. Diese Fehler bestehen in mehreren Komponenten und Subsystemen wie dem Control, Development System oder dem SysDrv3S.sys-Treiber, unter anderem aufgrund mehrerer sicherheitsrelevanter Probleme wie einer OS-Befehlsinjektion, einem Out-of-bounds-Write oder einer unzul\u00e4ssigen Einschr\u00e4nkung von Authentifizierungsversuchen. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand auszul\u00f6sen, vertrauliche Informationen offenzulegen, Dateien zu manipulieren oder Brute-Force-Angriffe durchzuf\u00fchren. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion oder eine Anmeldung, um erfolgreich ausgenutzt zu werden."
}
],
"product_status": {
"known_affected": [
"T034337",
"T040044"
]
},
"release_date": "2024-04-21T22:00:00.000+00:00",
"title": "CVE-2023-3663"
},
{
"cve": "CVE-2023-3669",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in CODESYS. Diese Fehler bestehen in mehreren Komponenten und Subsystemen wie dem Control, Development System oder dem SysDrv3S.sys-Treiber, unter anderem aufgrund mehrerer sicherheitsrelevanter Probleme wie einer OS-Befehlsinjektion, einem Out-of-bounds-Write oder einer unzul\u00e4ssigen Einschr\u00e4nkung von Authentifizierungsversuchen. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand auszul\u00f6sen, vertrauliche Informationen offenzulegen, Dateien zu manipulieren oder Brute-Force-Angriffe durchzuf\u00fchren. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion oder eine Anmeldung, um erfolgreich ausgenutzt zu werden."
}
],
"product_status": {
"known_affected": [
"T034337",
"T040044"
]
},
"release_date": "2024-04-21T22:00:00.000+00:00",
"title": "CVE-2023-3669"
},
{
"cve": "CVE-2023-3670",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in CODESYS. Diese Fehler bestehen in mehreren Komponenten und Subsystemen wie dem Control, Development System oder dem SysDrv3S.sys-Treiber, unter anderem aufgrund mehrerer sicherheitsrelevanter Probleme wie einer OS-Befehlsinjektion, einem Out-of-bounds-Write oder einer unzul\u00e4ssigen Einschr\u00e4nkung von Authentifizierungsversuchen. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand auszul\u00f6sen, vertrauliche Informationen offenzulegen, Dateien zu manipulieren oder Brute-Force-Angriffe durchzuf\u00fchren. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion oder eine Anmeldung, um erfolgreich ausgenutzt zu werden."
}
],
"product_status": {
"known_affected": [
"T034337",
"T040044"
]
},
"release_date": "2024-04-21T22:00:00.000+00:00",
"title": "CVE-2023-3670"
},
{
"cve": "CVE-2023-37545",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in CODESYS. Diese Fehler bestehen in mehreren Komponenten und Subsystemen wie dem Control, Development System oder dem SysDrv3S.sys-Treiber, unter anderem aufgrund mehrerer sicherheitsrelevanter Probleme wie einer OS-Befehlsinjektion, einem Out-of-bounds-Write oder einer unzul\u00e4ssigen Einschr\u00e4nkung von Authentifizierungsversuchen. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand auszul\u00f6sen, vertrauliche Informationen offenzulegen, Dateien zu manipulieren oder Brute-Force-Angriffe durchzuf\u00fchren. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion oder eine Anmeldung, um erfolgreich ausgenutzt zu werden."
}
],
"product_status": {
"known_affected": [
"T034337",
"T040044"
]
},
"release_date": "2024-04-21T22:00:00.000+00:00",
"title": "CVE-2023-37545"
},
{
"cve": "CVE-2023-37546",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in CODESYS. Diese Fehler bestehen in mehreren Komponenten und Subsystemen wie dem Control, Development System oder dem SysDrv3S.sys-Treiber, unter anderem aufgrund mehrerer sicherheitsrelevanter Probleme wie einer OS-Befehlsinjektion, einem Out-of-bounds-Write oder einer unzul\u00e4ssigen Einschr\u00e4nkung von Authentifizierungsversuchen. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand auszul\u00f6sen, vertrauliche Informationen offenzulegen, Dateien zu manipulieren oder Brute-Force-Angriffe durchzuf\u00fchren. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion oder eine Anmeldung, um erfolgreich ausgenutzt zu werden."
}
],
"product_status": {
"known_affected": [
"T034337",
"T040044"
]
},
"release_date": "2024-04-21T22:00:00.000+00:00",
"title": "CVE-2023-37546"
},
{
"cve": "CVE-2023-37547",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in CODESYS. Diese Fehler bestehen in mehreren Komponenten und Subsystemen wie dem Control, Development System oder dem SysDrv3S.sys-Treiber, unter anderem aufgrund mehrerer sicherheitsrelevanter Probleme wie einer OS-Befehlsinjektion, einem Out-of-bounds-Write oder einer unzul\u00e4ssigen Einschr\u00e4nkung von Authentifizierungsversuchen. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand auszul\u00f6sen, vertrauliche Informationen offenzulegen, Dateien zu manipulieren oder Brute-Force-Angriffe durchzuf\u00fchren. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion oder eine Anmeldung, um erfolgreich ausgenutzt zu werden."
}
],
"product_status": {
"known_affected": [
"T034337",
"T040044"
]
},
"release_date": "2024-04-21T22:00:00.000+00:00",
"title": "CVE-2023-37547"
},
{
"cve": "CVE-2023-37548",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in CODESYS. Diese Fehler bestehen in mehreren Komponenten und Subsystemen wie dem Control, Development System oder dem SysDrv3S.sys-Treiber, unter anderem aufgrund mehrerer sicherheitsrelevanter Probleme wie einer OS-Befehlsinjektion, einem Out-of-bounds-Write oder einer unzul\u00e4ssigen Einschr\u00e4nkung von Authentifizierungsversuchen. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand auszul\u00f6sen, vertrauliche Informationen offenzulegen, Dateien zu manipulieren oder Brute-Force-Angriffe durchzuf\u00fchren. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion oder eine Anmeldung, um erfolgreich ausgenutzt zu werden."
}
],
"product_status": {
"known_affected": [
"T034337",
"T040044"
]
},
"release_date": "2024-04-21T22:00:00.000+00:00",
"title": "CVE-2023-37548"
},
{
"cve": "CVE-2023-37549",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in CODESYS. Diese Fehler bestehen in mehreren Komponenten und Subsystemen wie dem Control, Development System oder dem SysDrv3S.sys-Treiber, unter anderem aufgrund mehrerer sicherheitsrelevanter Probleme wie einer OS-Befehlsinjektion, einem Out-of-bounds-Write oder einer unzul\u00e4ssigen Einschr\u00e4nkung von Authentifizierungsversuchen. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand auszul\u00f6sen, vertrauliche Informationen offenzulegen, Dateien zu manipulieren oder Brute-Force-Angriffe durchzuf\u00fchren. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion oder eine Anmeldung, um erfolgreich ausgenutzt zu werden."
}
],
"product_status": {
"known_affected": [
"T034337",
"T040044"
]
},
"release_date": "2024-04-21T22:00:00.000+00:00",
"title": "CVE-2023-37549"
},
{
"cve": "CVE-2023-37550",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in CODESYS. Diese Fehler bestehen in mehreren Komponenten und Subsystemen wie dem Control, Development System oder dem SysDrv3S.sys-Treiber, unter anderem aufgrund mehrerer sicherheitsrelevanter Probleme wie einer OS-Befehlsinjektion, einem Out-of-bounds-Write oder einer unzul\u00e4ssigen Einschr\u00e4nkung von Authentifizierungsversuchen. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand auszul\u00f6sen, vertrauliche Informationen offenzulegen, Dateien zu manipulieren oder Brute-Force-Angriffe durchzuf\u00fchren. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion oder eine Anmeldung, um erfolgreich ausgenutzt zu werden."
}
],
"product_status": {
"known_affected": [
"T034337",
"T040044"
]
},
"release_date": "2024-04-21T22:00:00.000+00:00",
"title": "CVE-2023-37550"
},
{
"cve": "CVE-2023-37551",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in CODESYS. Diese Fehler bestehen in mehreren Komponenten und Subsystemen wie dem Control, Development System oder dem SysDrv3S.sys-Treiber, unter anderem aufgrund mehrerer sicherheitsrelevanter Probleme wie einer OS-Befehlsinjektion, einem Out-of-bounds-Write oder einer unzul\u00e4ssigen Einschr\u00e4nkung von Authentifizierungsversuchen. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand auszul\u00f6sen, vertrauliche Informationen offenzulegen, Dateien zu manipulieren oder Brute-Force-Angriffe durchzuf\u00fchren. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion oder eine Anmeldung, um erfolgreich ausgenutzt zu werden."
}
],
"product_status": {
"known_affected": [
"T034337",
"T040044"
]
},
"release_date": "2024-04-21T22:00:00.000+00:00",
"title": "CVE-2023-37551"
},
{
"cve": "CVE-2023-37552",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in CODESYS. Diese Fehler bestehen in mehreren Komponenten und Subsystemen wie dem Control, Development System oder dem SysDrv3S.sys-Treiber, unter anderem aufgrund mehrerer sicherheitsrelevanter Probleme wie einer OS-Befehlsinjektion, einem Out-of-bounds-Write oder einer unzul\u00e4ssigen Einschr\u00e4nkung von Authentifizierungsversuchen. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand auszul\u00f6sen, vertrauliche Informationen offenzulegen, Dateien zu manipulieren oder Brute-Force-Angriffe durchzuf\u00fchren. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion oder eine Anmeldung, um erfolgreich ausgenutzt zu werden."
}
],
"product_status": {
"known_affected": [
"T034337",
"T040044"
]
},
"release_date": "2024-04-21T22:00:00.000+00:00",
"title": "CVE-2023-37552"
},
{
"cve": "CVE-2023-37553",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in CODESYS. Diese Fehler bestehen in mehreren Komponenten und Subsystemen wie dem Control, Development System oder dem SysDrv3S.sys-Treiber, unter anderem aufgrund mehrerer sicherheitsrelevanter Probleme wie einer OS-Befehlsinjektion, einem Out-of-bounds-Write oder einer unzul\u00e4ssigen Einschr\u00e4nkung von Authentifizierungsversuchen. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand auszul\u00f6sen, vertrauliche Informationen offenzulegen, Dateien zu manipulieren oder Brute-Force-Angriffe durchzuf\u00fchren. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion oder eine Anmeldung, um erfolgreich ausgenutzt zu werden."
}
],
"product_status": {
"known_affected": [
"T034337",
"T040044"
]
},
"release_date": "2024-04-21T22:00:00.000+00:00",
"title": "CVE-2023-37553"
},
{
"cve": "CVE-2023-37554",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in CODESYS. Diese Fehler bestehen in mehreren Komponenten und Subsystemen wie dem Control, Development System oder dem SysDrv3S.sys-Treiber, unter anderem aufgrund mehrerer sicherheitsrelevanter Probleme wie einer OS-Befehlsinjektion, einem Out-of-bounds-Write oder einer unzul\u00e4ssigen Einschr\u00e4nkung von Authentifizierungsversuchen. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand auszul\u00f6sen, vertrauliche Informationen offenzulegen, Dateien zu manipulieren oder Brute-Force-Angriffe durchzuf\u00fchren. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion oder eine Anmeldung, um erfolgreich ausgenutzt zu werden."
}
],
"product_status": {
"known_affected": [
"T034337",
"T040044"
]
},
"release_date": "2024-04-21T22:00:00.000+00:00",
"title": "CVE-2023-37554"
},
{
"cve": "CVE-2023-37555",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in CODESYS. Diese Fehler bestehen in mehreren Komponenten und Subsystemen wie dem Control, Development System oder dem SysDrv3S.sys-Treiber, unter anderem aufgrund mehrerer sicherheitsrelevanter Probleme wie einer OS-Befehlsinjektion, einem Out-of-bounds-Write oder einer unzul\u00e4ssigen Einschr\u00e4nkung von Authentifizierungsversuchen. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand auszul\u00f6sen, vertrauliche Informationen offenzulegen, Dateien zu manipulieren oder Brute-Force-Angriffe durchzuf\u00fchren. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion oder eine Anmeldung, um erfolgreich ausgenutzt zu werden."
}
],
"product_status": {
"known_affected": [
"T034337",
"T040044"
]
},
"release_date": "2024-04-21T22:00:00.000+00:00",
"title": "CVE-2023-37555"
},
{
"cve": "CVE-2023-37556",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in CODESYS. Diese Fehler bestehen in mehreren Komponenten und Subsystemen wie dem Control, Development System oder dem SysDrv3S.sys-Treiber, unter anderem aufgrund mehrerer sicherheitsrelevanter Probleme wie einer OS-Befehlsinjektion, einem Out-of-bounds-Write oder einer unzul\u00e4ssigen Einschr\u00e4nkung von Authentifizierungsversuchen. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand auszul\u00f6sen, vertrauliche Informationen offenzulegen, Dateien zu manipulieren oder Brute-Force-Angriffe durchzuf\u00fchren. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion oder eine Anmeldung, um erfolgreich ausgenutzt zu werden."
}
],
"product_status": {
"known_affected": [
"T034337",
"T040044"
]
},
"release_date": "2024-04-21T22:00:00.000+00:00",
"title": "CVE-2023-37556"
},
{
"cve": "CVE-2023-37557",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in CODESYS. Diese Fehler bestehen in mehreren Komponenten und Subsystemen wie dem Control, Development System oder dem SysDrv3S.sys-Treiber, unter anderem aufgrund mehrerer sicherheitsrelevanter Probleme wie einer OS-Befehlsinjektion, einem Out-of-bounds-Write oder einer unzul\u00e4ssigen Einschr\u00e4nkung von Authentifizierungsversuchen. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand auszul\u00f6sen, vertrauliche Informationen offenzulegen, Dateien zu manipulieren oder Brute-Force-Angriffe durchzuf\u00fchren. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion oder eine Anmeldung, um erfolgreich ausgenutzt zu werden."
}
],
"product_status": {
"known_affected": [
"T034337",
"T040044"
]
},
"release_date": "2024-04-21T22:00:00.000+00:00",
"title": "CVE-2023-37557"
},
{
"cve": "CVE-2023-37558",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in CODESYS. Diese Fehler bestehen in mehreren Komponenten und Subsystemen wie dem Control, Development System oder dem SysDrv3S.sys-Treiber, unter anderem aufgrund mehrerer sicherheitsrelevanter Probleme wie einer OS-Befehlsinjektion, einem Out-of-bounds-Write oder einer unzul\u00e4ssigen Einschr\u00e4nkung von Authentifizierungsversuchen. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand auszul\u00f6sen, vertrauliche Informationen offenzulegen, Dateien zu manipulieren oder Brute-Force-Angriffe durchzuf\u00fchren. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion oder eine Anmeldung, um erfolgreich ausgenutzt zu werden."
}
],
"product_status": {
"known_affected": [
"T034337",
"T040044"
]
},
"release_date": "2024-04-21T22:00:00.000+00:00",
"title": "CVE-2023-37558"
},
{
"cve": "CVE-2023-37559",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in CODESYS. Diese Fehler bestehen in mehreren Komponenten und Subsystemen wie dem Control, Development System oder dem SysDrv3S.sys-Treiber, unter anderem aufgrund mehrerer sicherheitsrelevanter Probleme wie einer OS-Befehlsinjektion, einem Out-of-bounds-Write oder einer unzul\u00e4ssigen Einschr\u00e4nkung von Authentifizierungsversuchen. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand auszul\u00f6sen, vertrauliche Informationen offenzulegen, Dateien zu manipulieren oder Brute-Force-Angriffe durchzuf\u00fchren. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion oder eine Anmeldung, um erfolgreich ausgenutzt zu werden."
}
],
"product_status": {
"known_affected": [
"T034337",
"T040044"
]
},
"release_date": "2024-04-21T22:00:00.000+00:00",
"title": "CVE-2023-37559"
},
{
"cve": "CVE-2023-3935",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in CODESYS. Diese Fehler bestehen in mehreren Komponenten und Subsystemen wie dem Control, Development System oder dem SysDrv3S.sys-Treiber, unter anderem aufgrund mehrerer sicherheitsrelevanter Probleme wie einer OS-Befehlsinjektion, einem Out-of-bounds-Write oder einer unzul\u00e4ssigen Einschr\u00e4nkung von Authentifizierungsversuchen. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand auszul\u00f6sen, vertrauliche Informationen offenzulegen, Dateien zu manipulieren oder Brute-Force-Angriffe durchzuf\u00fchren. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion oder eine Anmeldung, um erfolgreich ausgenutzt zu werden."
}
],
"product_status": {
"known_affected": [
"T034337",
"T040044"
]
},
"release_date": "2024-04-21T22:00:00.000+00:00",
"title": "CVE-2023-3935"
},
{
"cve": "CVE-2023-6357",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in CODESYS. Diese Fehler bestehen in mehreren Komponenten und Subsystemen wie dem Control, Development System oder dem SysDrv3S.sys-Treiber, unter anderem aufgrund mehrerer sicherheitsrelevanter Probleme wie einer OS-Befehlsinjektion, einem Out-of-bounds-Write oder einer unzul\u00e4ssigen Einschr\u00e4nkung von Authentifizierungsversuchen. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand auszul\u00f6sen, vertrauliche Informationen offenzulegen, Dateien zu manipulieren oder Brute-Force-Angriffe durchzuf\u00fchren. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion oder eine Anmeldung, um erfolgreich ausgenutzt zu werden."
}
],
"product_status": {
"known_affected": [
"T034337",
"T040044"
]
},
"release_date": "2024-04-21T22:00:00.000+00:00",
"title": "CVE-2023-6357"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…