VDE-2023-026
Vulnerability from csaf_wagogmbhcokg - Published: 2023-07-31 07:36 - Updated: 2025-05-22 13:03Summary
WAGO: Multiple products prone to multiple vulnerabilities in e!Runtime / CODESYS V3 Runtime
Notes
Summary: Multiple WAGO devices are prone to vulnerabilites in the used CODESYS V3 framework.
Impact: Please refer to the official CODESYS Advisories:
• Advisory2023-02_CDS-82683• Advisory2023-03_CDS-84820
Website at https://www.codesys.com/security/security-reports.html
Mitigation: Vulnerabilities of CODESYS Advisory 2023-02:• Please make sure that the 'port authentication' option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.• Please change the default admin password.
Vulnerability of CODESYS Advisory 2023-03:• This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.
In addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:
Use controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.
Use firewalls to protect and separate the control system network from other networks.
Use VPN (Virtual Private Networks) tunnels if remote access is required.
Activate and apply user management and password features.
Use encrypted communication links.
Limit the access to both development and control system by physical means, operating system features, etc.
Protect both development and control system by using up to date virus detection solutions.
For further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html
Remediation: A fixed firmware for affected devices is planned for Q1 2024.
In multiple CODESYS products in multiple versions an unauthorized, remote attacker may use a improper input validation vulnerability to read from invalid addresses leading to a denial of service.
7.5 (High)
Mitigation
Vulnerabilities of CODESYS Advisory 2023-02:• Please make sure that the 'port authentication' option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.• Please change the default admin password.
Vulnerability of CODESYS Advisory 2023-03:• This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.
In addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:
Use controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.
Use firewalls to protect and separate the control system network from other networks.
Use VPN (Virtual Private Networks) tunnels if remote access is required.
Activate and apply user management and password features.
Use encrypted communication links.
Limit the access to both development and control system by physical means, operating system features, etc.
Protect both development and control system by using up to date virus detection solutions.
For further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html
Vendor Fix
A fixed firmware for affected devices is planned for Q1 2024.
An authenticated, remote attacker may use a Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple versions of multiple CODESYS products to force a denial-of-service situation.
6.5 (Medium)
Mitigation
Vulnerabilities of CODESYS Advisory 2023-02:• Please make sure that the 'port authentication' option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.• Please change the default admin password.
Vulnerability of CODESYS Advisory 2023-03:• This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.
In addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:
Use controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.
Use firewalls to protect and separate the control system network from other networks.
Use VPN (Virtual Private Networks) tunnels if remote access is required.
Activate and apply user management and password features.
Use encrypted communication links.
Limit the access to both development and control system by physical means, operating system features, etc.
Protect both development and control system by using up to date virus detection solutions.
For further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html
Vendor Fix
A fixed firmware for affected devices is planned for Q1 2024.
An authenticated, remote attacker may use a improper input validation vulnerability in the CmpApp/CmpAppBP/CmpAppForce Components of multiple CODESYS products in multiple versions to read from an invalid address which can lead to a denial-of-service condition.
6.5 (Medium)
Mitigation
Vulnerabilities of CODESYS Advisory 2023-02:• Please make sure that the 'port authentication' option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.• Please change the default admin password.
Vulnerability of CODESYS Advisory 2023-03:• This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.
In addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:
Use controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.
Use firewalls to protect and separate the control system network from other networks.
Use VPN (Virtual Private Networks) tunnels if remote access is required.
Activate and apply user management and password features.
Use encrypted communication links.
Limit the access to both development and control system by physical means, operating system features, etc.
Protect both development and control system by using up to date virus detection solutions.
For further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html
Vendor Fix
A fixed firmware for affected devices is planned for Q1 2024.
An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution.
8.8 (High)
Mitigation
Vulnerabilities of CODESYS Advisory 2023-02:• Please make sure that the 'port authentication' option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.• Please change the default admin password.
Vulnerability of CODESYS Advisory 2023-03:• This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.
In addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:
Use controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.
Use firewalls to protect and separate the control system network from other networks.
Use VPN (Virtual Private Networks) tunnels if remote access is required.
Activate and apply user management and password features.
Use encrypted communication links.
Limit the access to both development and control system by physical means, operating system features, etc.
Protect both development and control system by using up to date virus detection solutions.
For further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html
Vendor Fix
A fixed firmware for affected devices is planned for Q1 2024.
An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution.
8.8 (High)
Mitigation
Vulnerabilities of CODESYS Advisory 2023-02:• Please make sure that the 'port authentication' option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.• Please change the default admin password.
Vulnerability of CODESYS Advisory 2023-03:• This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.
In addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:
Use controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.
Use firewalls to protect and separate the control system network from other networks.
Use VPN (Virtual Private Networks) tunnels if remote access is required.
Activate and apply user management and password features.
Use encrypted communication links.
Limit the access to both development and control system by physical means, operating system features, etc.
Protect both development and control system by using up to date virus detection solutions.
For further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html
Vendor Fix
A fixed firmware for affected devices is planned for Q1 2024.
An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution.
8.8 (High)
Mitigation
Vulnerabilities of CODESYS Advisory 2023-02:• Please make sure that the 'port authentication' option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.• Please change the default admin password.
Vulnerability of CODESYS Advisory 2023-03:• This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.
In addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:
Use controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.
Use firewalls to protect and separate the control system network from other networks.
Use VPN (Virtual Private Networks) tunnels if remote access is required.
Activate and apply user management and password features.
Use encrypted communication links.
Limit the access to both development and control system by physical means, operating system features, etc.
Protect both development and control system by using up to date virus detection solutions.
For further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html
Vendor Fix
A fixed firmware for affected devices is planned for Q1 2024.
An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution.
8.8 (High)
Mitigation
Vulnerabilities of CODESYS Advisory 2023-02:• Please make sure that the 'port authentication' option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.• Please change the default admin password.
Vulnerability of CODESYS Advisory 2023-03:• This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.
In addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:
Use controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.
Use firewalls to protect and separate the control system network from other networks.
Use VPN (Virtual Private Networks) tunnels if remote access is required.
Activate and apply user management and password features.
Use encrypted communication links.
Limit the access to both development and control system by physical means, operating system features, etc.
Protect both development and control system by using up to date virus detection solutions.
For further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html
Vendor Fix
A fixed firmware for affected devices is planned for Q1 2024.
An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution.
8.8 (High)
Mitigation
Vulnerabilities of CODESYS Advisory 2023-02:• Please make sure that the 'port authentication' option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.• Please change the default admin password.
Vulnerability of CODESYS Advisory 2023-03:• This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.
In addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:
Use controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.
Use firewalls to protect and separate the control system network from other networks.
Use VPN (Virtual Private Networks) tunnels if remote access is required.
Activate and apply user management and password features.
Use encrypted communication links.
Limit the access to both development and control system by physical means, operating system features, etc.
Protect both development and control system by using up to date virus detection solutions.
For further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html
Vendor Fix
A fixed firmware for affected devices is planned for Q1 2024.
An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the CmpAppForce Component of multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution.
8.8 (High)
Mitigation
Vulnerabilities of CODESYS Advisory 2023-02:• Please make sure that the 'port authentication' option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.• Please change the default admin password.
Vulnerability of CODESYS Advisory 2023-03:• This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.
In addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:
Use controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.
Use firewalls to protect and separate the control system network from other networks.
Use VPN (Virtual Private Networks) tunnels if remote access is required.
Activate and apply user management and password features.
Use encrypted communication links.
Limit the access to both development and control system by physical means, operating system features, etc.
Protect both development and control system by using up to date virus detection solutions.
For further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html
Vendor Fix
A fixed firmware for affected devices is planned for Q1 2024.
An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution.
8.8 (High)
Mitigation
Vulnerabilities of CODESYS Advisory 2023-02:• Please make sure that the 'port authentication' option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.• Please change the default admin password.
Vulnerability of CODESYS Advisory 2023-03:• This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.
In addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:
Use controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.
Use firewalls to protect and separate the control system network from other networks.
Use VPN (Virtual Private Networks) tunnels if remote access is required.
Activate and apply user management and password features.
Use encrypted communication links.
Limit the access to both development and control system by physical means, operating system features, etc.
Protect both development and control system by using up to date virus detection solutions.
For further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html
Vendor Fix
A fixed firmware for affected devices is planned for Q1 2024.
An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution.
8.8 (High)
Mitigation
Vulnerabilities of CODESYS Advisory 2023-02:• Please make sure that the 'port authentication' option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.• Please change the default admin password.
Vulnerability of CODESYS Advisory 2023-03:• This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.
In addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:
Use controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.
Use firewalls to protect and separate the control system network from other networks.
Use VPN (Virtual Private Networks) tunnels if remote access is required.
Activate and apply user management and password features.
Use encrypted communication links.
Limit the access to both development and control system by physical means, operating system features, etc.
Protect both development and control system by using up to date virus detection solutions.
For further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html
Vendor Fix
A fixed firmware for affected devices is planned for Q1 2024.
An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution.
8.8 (High)
Mitigation
Vulnerabilities of CODESYS Advisory 2023-02:• Please make sure that the 'port authentication' option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.• Please change the default admin password.
Vulnerability of CODESYS Advisory 2023-03:• This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.
In addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:
Use controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.
Use firewalls to protect and separate the control system network from other networks.
Use VPN (Virtual Private Networks) tunnels if remote access is required.
Activate and apply user management and password features.
Use encrypted communication links.
Limit the access to both development and control system by physical means, operating system features, etc.
Protect both development and control system by using up to date virus detection solutions.
For further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html
Vendor Fix
A fixed firmware for affected devices is planned for Q1 2024.
An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution.
8.8 (High)
Mitigation
Vulnerabilities of CODESYS Advisory 2023-02:• Please make sure that the 'port authentication' option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.• Please change the default admin password.
Vulnerability of CODESYS Advisory 2023-03:• This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.
In addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:
Use controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.
Use firewalls to protect and separate the control system network from other networks.
Use VPN (Virtual Private Networks) tunnels if remote access is required.
Activate and apply user management and password features.
Use encrypted communication links.
Limit the access to both development and control system by physical means, operating system features, etc.
Protect both development and control system by using up to date virus detection solutions.
For further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html
Vendor Fix
A fixed firmware for affected devices is planned for Q1 2024.
An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution.
8.8 (High)
Mitigation
Vulnerabilities of CODESYS Advisory 2023-02:• Please make sure that the 'port authentication' option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.• Please change the default admin password.
Vulnerability of CODESYS Advisory 2023-03:• This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.
In addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:
Use controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.
Use firewalls to protect and separate the control system network from other networks.
Use VPN (Virtual Private Networks) tunnels if remote access is required.
Activate and apply user management and password features.
Use encrypted communication links.
Limit the access to both development and control system by physical means, operating system features, etc.
Protect both development and control system by using up to date virus detection solutions.
For further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html
Vendor Fix
A fixed firmware for affected devices is planned for Q1 2024.
An authenticated, remote attacker may use a out-of-bounds write vulnerability in multiple CODESYS products in multiple versions to write data into memory which can lead to a denial-of-service condition, memory overwriting, or remote code execution.
8.8 (High)
Mitigation
Vulnerabilities of CODESYS Advisory 2023-02:• Please make sure that the 'port authentication' option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.• Please change the default admin password.
Vulnerability of CODESYS Advisory 2023-03:• This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.
In addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:
Use controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.
Use firewalls to protect and separate the control system network from other networks.
Use VPN (Virtual Private Networks) tunnels if remote access is required.
Activate and apply user management and password features.
Use encrypted communication links.
Limit the access to both development and control system by physical means, operating system features, etc.
Protect both development and control system by using up to date virus detection solutions.
For further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html
Vendor Fix
A fixed firmware for affected devices is planned for Q1 2024.
Multiple CODESYS products in multiple versions are prone to a improper input validation vulnerability. An authenticated remote attacker may craft specific requests that use the vulnerability leading to a denial-of-service condition.
6.5 (Medium)
Mitigation
Vulnerabilities of CODESYS Advisory 2023-02:• Please make sure that the 'port authentication' option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.• Please change the default admin password.
Vulnerability of CODESYS Advisory 2023-03:• This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.
In addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:
Use controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.
Use firewalls to protect and separate the control system network from other networks.
Use VPN (Virtual Private Networks) tunnels if remote access is required.
Activate and apply user management and password features.
Use encrypted communication links.
Limit the access to both development and control system by physical means, operating system features, etc.
Protect both development and control system by using up to date virus detection solutions.
For further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html
Vendor Fix
A fixed firmware for affected devices is planned for Q1 2024.
References
| URL | Category | |
|---|---|---|
Acknowledgments
CERT@VDE
certvde.com
{
"document": {
"acknowledgments": [
{
"organization": "CERT@VDE",
"summary": "coordination",
"urls": [
"https://certvde.com"
]
}
],
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en-GB",
"notes": [
{
"category": "summary",
"text": "Multiple WAGO devices are prone to vulnerabilites in the used CODESYS V3 framework.",
"title": "Summary"
},
{
"category": "description",
"text": "Please refer to the official CODESYS Advisories:\n\u2022 Advisory2023-02_CDS-82683\u2022 Advisory2023-03_CDS-84820\nWebsite at https://www.codesys.com/security/security-reports.html",
"title": "Impact"
},
{
"category": "description",
"text": "Vulnerabilities of CODESYS Advisory 2023-02:\u2022 Please make sure that the \u0027port authentication\u0027 option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.\u2022 Please change the default admin password.\nVulnerability of CODESYS Advisory 2023-03:\u2022 This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.\nIn addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:\n\nUse controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.\nUse firewalls to protect and separate the control system network from other networks.\nUse VPN (Virtual Private Networks) tunnels if remote access is required.\nActivate and apply user management and password features.\nUse encrypted communication links.\nLimit the access to both development and control system by physical means, operating system features, etc.\nProtect both development and control system by using up to date virus detection solutions.\n\nFor further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html",
"title": "Mitigation"
},
{
"category": "description",
"text": "A fixed firmware for affected devices is planned for Q1 2024.",
"title": "Remediation"
}
],
"publisher": {
"category": "vendor",
"contact_details": "psirt@wago.com",
"name": "WAGO GmbH \u0026 Co. KG",
"namespace": "https://www.wago.com/psirt"
},
"references": [
{
"category": "self",
"summary": "VDE-2023-026: WAGO: Multiple products prone to multiple vulnerabilities in e!Runtime / CODESYS V3 Runtime - HTML",
"url": "https://certvde.com/en/advisories/VDE-2023-026/"
},
{
"category": "self",
"summary": "VDE-2023-026: WAGO: Multiple products prone to multiple vulnerabilities in e!Runtime / CODESYS V3 Runtime - CSAF",
"url": "https://wago.csaf-tp.certvde.com/.well-known/csaf/white/2023/vde-2023-026.json"
},
{
"category": "external",
"summary": "WAGO PSIRT",
"url": "https://www.wago.com/psirt"
},
{
"category": "external",
"summary": "CERT@VDE Security Advisories for WAGO GmbH \u0026 Co. KG",
"url": "https://certvde.com/en/advisories/vendor/wago/"
}
],
"title": "WAGO: Multiple products prone to multiple vulnerabilities in e!Runtime / CODESYS V3 Runtime",
"tracking": {
"aliases": [
"VDE-2023-026"
],
"current_release_date": "2025-05-22T13:03:10.000Z",
"generator": {
"date": "2025-05-05T09:43:46.052Z",
"engine": {
"name": "Secvisogram",
"version": "2.5.24"
}
},
"id": "VDE-2023-026",
"initial_release_date": "2023-07-31T07:36:00.000Z",
"revision_history": [
{
"date": "2023-07-31T07:36:00.000Z",
"number": "1",
"summary": "Initial revision."
},
{
"date": "2025-05-22T13:03:10.000Z",
"number": "2",
"summary": "Fix: quotation mark"
}
],
"status": "final",
"version": "2"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Compact Controller 100",
"product": {
"name": "Compact Controller 100",
"product_id": "CSAFPID-11001",
"product_identification_helper": {
"model_numbers": [
"751-9301/xxx-xxx",
"751-9401/xxx-xxx"
]
}
}
},
{
"category": "product_name",
"name": "EC 300",
"product": {
"name": "EC 300",
"product_id": "CSAFPID-11002",
"product_identification_helper": {
"model_numbers": [
"752-8303/8000-0002"
]
}
}
},
{
"category": "product_name",
"name": "PFC100",
"product": {
"name": "PFC100",
"product_id": "CSAFPID-11003",
"product_identification_helper": {
"model_numbers": [
"750-8101/xxx-xxx",
"750-8102/xxx-xxx",
"750-8100/xxx-xxx"
]
}
}
},
{
"category": "product_name",
"name": "PFC200",
"product": {
"name": "PFC200",
"product_id": "CSAFPID-11004",
"product_identification_helper": {
"model_numbers": [
"750-8202/xxx-xxx",
"750-8204/xxx-xxx",
"750-8206/xxx-xxx",
"750-8207/xxx-xxx",
"750-8210/xxx-xxx",
"750-8211/xxx-xxx",
"750-8212/xxx-xxx",
"750-8213/xxx-xxx",
"750-8214/xxx-xxx",
"750-8215/xxx-xxx",
"750-8216/xxx-xxx",
"750-8217/xxx-xxx",
"750-8203/xxx-xxx"
]
}
}
},
{
"category": "product_name",
"name": "TP 600",
"product": {
"name": "TP 600",
"product_id": "CSAFPID-11005",
"product_identification_helper": {
"model_numbers": [
"762-5x0x/8000-000x",
"762-6x0x/8000-000x",
"762-4x0x/8000-000x"
]
}
}
}
],
"category": "product_family",
"name": "Hardware"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=FW25",
"product": {
"name": "Firmware \u003c= FW25",
"product_id": "CSAFPID-21001"
}
}
],
"category": "product_family",
"name": "Firmware"
}
],
"category": "vendor",
"name": "Wago"
}
],
"product_groups": [
{
"group_id": "CSAFGID-0001",
"product_ids": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003"
],
"summary": "Affected products."
}
],
"relationships": [
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c= FW25 installed on Compact Controller 100",
"product_id": "CSAFPID-31001"
},
"product_reference": "CSAFPID-21001",
"relates_to_product_reference": "CSAFPID-11001"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c= FW25 installed on Compact Controller 100",
"product_id": "CSAFPID-31002"
},
"product_reference": "CSAFPID-21001",
"relates_to_product_reference": "CSAFPID-11002"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c= FW25 installed on EC 300",
"product_id": "CSAFPID-31003"
},
"product_reference": "CSAFPID-21001",
"relates_to_product_reference": "CSAFPID-11003"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c= FW25 installed on PFC100",
"product_id": "CSAFPID-31004"
},
"product_reference": "CSAFPID-21001",
"relates_to_product_reference": "CSAFPID-11004"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c= FW25 installed on PFC100",
"product_id": "CSAFPID-31005"
},
"product_reference": "CSAFPID-21001",
"relates_to_product_reference": "CSAFPID-11005"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2022-47391",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "description",
"text": "In multiple CODESYS products in multiple versions an unauthorized, remote attacker may use a improper input validation vulnerability to read from invalid addresses leading to a denial of service.",
"title": "Vulnerability Description"
}
],
"product_status": {
"known_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "mitigation",
"details": "Vulnerabilities of CODESYS Advisory 2023-02:\u2022 Please make sure that the \u0027port authentication\u0027 option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.\u2022 Please change the default admin password.\nVulnerability of CODESYS Advisory 2023-03:\u2022 This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.\nIn addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:\n\nUse controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.\nUse firewalls to protect and separate the control system network from other networks.\nUse VPN (Virtual Private Networks) tunnels if remote access is required.\nActivate and apply user management and password features.\nUse encrypted communication links.\nLimit the access to both development and control system by physical means, operating system features, etc.\nProtect both development and control system by using up to date virus detection solutions.\n\nFor further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "A fixed firmware for affected devices is planned for Q1 2024.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
}
],
"title": "CVE-2022-47391"
},
{
"cve": "CVE-2022-47393",
"cwe": {
"id": "CWE-119",
"name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
},
"notes": [
{
"category": "description",
"text": "An authenticated, remote attacker may use a Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple versions of multiple CODESYS products to force a denial-of-service situation.",
"title": "Vulnerability Description"
}
],
"product_status": {
"known_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "mitigation",
"details": "Vulnerabilities of CODESYS Advisory 2023-02:\u2022 Please make sure that the \u0027port authentication\u0027 option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.\u2022 Please change the default admin password.\nVulnerability of CODESYS Advisory 2023-03:\u2022 This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.\nIn addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:\n\nUse controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.\nUse firewalls to protect and separate the control system network from other networks.\nUse VPN (Virtual Private Networks) tunnels if remote access is required.\nActivate and apply user management and password features.\nUse encrypted communication links.\nLimit the access to both development and control system by physical means, operating system features, etc.\nProtect both development and control system by using up to date virus detection solutions.\n\nFor further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "A fixed firmware for affected devices is planned for Q1 2024.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 6.5,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 6.5,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
}
],
"title": "CVE-2022-47393"
},
{
"cve": "CVE-2022-47392",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "description",
"text": "An authenticated, remote attacker may use a improper input validation vulnerability in the CmpApp/CmpAppBP/CmpAppForce Components of multiple CODESYS products in multiple versions to read from an invalid address which can lead\u00a0to a denial-of-service condition.",
"title": "Vulnerability Description"
}
],
"product_status": {
"known_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "mitigation",
"details": "Vulnerabilities of CODESYS Advisory 2023-02:\u2022 Please make sure that the \u0027port authentication\u0027 option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.\u2022 Please change the default admin password.\nVulnerability of CODESYS Advisory 2023-03:\u2022 This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.\nIn addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:\n\nUse controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.\nUse firewalls to protect and separate the control system network from other networks.\nUse VPN (Virtual Private Networks) tunnels if remote access is required.\nActivate and apply user management and password features.\nUse encrypted communication links.\nLimit the access to both development and control system by physical means, operating system features, etc.\nProtect both development and control system by using up to date virus detection solutions.\n\nFor further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "A fixed firmware for affected devices is planned for Q1 2024.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 6.5,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 6.5,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
}
],
"title": "CVE-2022-47392"
},
{
"cve": "CVE-2022-47390",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "description",
"text": "An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead\u00a0to a denial-of-service condition, memory overwriting, or remote code execution.",
"title": "Vulnerability Description"
}
],
"product_status": {
"known_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "mitigation",
"details": "Vulnerabilities of CODESYS Advisory 2023-02:\u2022 Please make sure that the \u0027port authentication\u0027 option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.\u2022 Please change the default admin password.\nVulnerability of CODESYS Advisory 2023-03:\u2022 This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.\nIn addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:\n\nUse controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.\nUse firewalls to protect and separate the control system network from other networks.\nUse VPN (Virtual Private Networks) tunnels if remote access is required.\nActivate and apply user management and password features.\nUse encrypted communication links.\nLimit the access to both development and control system by physical means, operating system features, etc.\nProtect both development and control system by using up to date virus detection solutions.\n\nFor further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "A fixed firmware for affected devices is planned for Q1 2024.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 8.8,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 8.8,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
}
],
"title": "CVE-2022-47390"
},
{
"cve": "CVE-2022-47389",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "description",
"text": "An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead\u00a0to a denial-of-service condition, memory overwriting, or remote code execution.",
"title": "Vulnerability Description"
}
],
"product_status": {
"known_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "mitigation",
"details": "Vulnerabilities of CODESYS Advisory 2023-02:\u2022 Please make sure that the \u0027port authentication\u0027 option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.\u2022 Please change the default admin password.\nVulnerability of CODESYS Advisory 2023-03:\u2022 This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.\nIn addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:\n\nUse controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.\nUse firewalls to protect and separate the control system network from other networks.\nUse VPN (Virtual Private Networks) tunnels if remote access is required.\nActivate and apply user management and password features.\nUse encrypted communication links.\nLimit the access to both development and control system by physical means, operating system features, etc.\nProtect both development and control system by using up to date virus detection solutions.\n\nFor further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "A fixed firmware for affected devices is planned for Q1 2024.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 8.8,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 8.8,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
}
],
"title": "CVE-2022-47389"
},
{
"cve": "CVE-2022-47388",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "description",
"text": "An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead\u00a0to a denial-of-service condition, memory overwriting, or remote code execution.",
"title": "Vulnerability Description"
}
],
"product_status": {
"known_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "mitigation",
"details": "Vulnerabilities of CODESYS Advisory 2023-02:\u2022 Please make sure that the \u0027port authentication\u0027 option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.\u2022 Please change the default admin password.\nVulnerability of CODESYS Advisory 2023-03:\u2022 This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.\nIn addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:\n\nUse controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.\nUse firewalls to protect and separate the control system network from other networks.\nUse VPN (Virtual Private Networks) tunnels if remote access is required.\nActivate and apply user management and password features.\nUse encrypted communication links.\nLimit the access to both development and control system by physical means, operating system features, etc.\nProtect both development and control system by using up to date virus detection solutions.\n\nFor further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "A fixed firmware for affected devices is planned for Q1 2024.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 8.8,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 8.8,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
}
],
"title": "CVE-2022-47388"
},
{
"cve": "CVE-2022-47387",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "description",
"text": "An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead\u00a0to a denial-of-service condition, memory overwriting, or remote code execution.",
"title": "Vulnerability Description"
}
],
"product_status": {
"known_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "mitigation",
"details": "Vulnerabilities of CODESYS Advisory 2023-02:\u2022 Please make sure that the \u0027port authentication\u0027 option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.\u2022 Please change the default admin password.\nVulnerability of CODESYS Advisory 2023-03:\u2022 This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.\nIn addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:\n\nUse controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.\nUse firewalls to protect and separate the control system network from other networks.\nUse VPN (Virtual Private Networks) tunnels if remote access is required.\nActivate and apply user management and password features.\nUse encrypted communication links.\nLimit the access to both development and control system by physical means, operating system features, etc.\nProtect both development and control system by using up to date virus detection solutions.\n\nFor further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "A fixed firmware for affected devices is planned for Q1 2024.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 8.8,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 8.8,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
}
],
"title": "CVE-2022-47387"
},
{
"cve": "CVE-2022-47386",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "description",
"text": "An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead\u00a0to a denial-of-service condition, memory overwriting, or remote code execution.",
"title": "Vulnerability Description"
}
],
"product_status": {
"known_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "mitigation",
"details": "Vulnerabilities of CODESYS Advisory 2023-02:\u2022 Please make sure that the \u0027port authentication\u0027 option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.\u2022 Please change the default admin password.\nVulnerability of CODESYS Advisory 2023-03:\u2022 This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.\nIn addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:\n\nUse controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.\nUse firewalls to protect and separate the control system network from other networks.\nUse VPN (Virtual Private Networks) tunnels if remote access is required.\nActivate and apply user management and password features.\nUse encrypted communication links.\nLimit the access to both development and control system by physical means, operating system features, etc.\nProtect both development and control system by using up to date virus detection solutions.\n\nFor further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "A fixed firmware for affected devices is planned for Q1 2024.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 8.8,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 8.8,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
}
],
"title": "CVE-2022-47386"
},
{
"cve": "CVE-2022-47385",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "description",
"text": "An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the CmpAppForce Component of multiple CODESYS products in multiple versions to write data into the stack which can lead\u00a0to a denial-of-service condition, memory overwriting, or remote code execution.",
"title": "Vulnerability Description"
}
],
"product_status": {
"known_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "mitigation",
"details": "Vulnerabilities of CODESYS Advisory 2023-02:\u2022 Please make sure that the \u0027port authentication\u0027 option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.\u2022 Please change the default admin password.\nVulnerability of CODESYS Advisory 2023-03:\u2022 This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.\nIn addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:\n\nUse controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.\nUse firewalls to protect and separate the control system network from other networks.\nUse VPN (Virtual Private Networks) tunnels if remote access is required.\nActivate and apply user management and password features.\nUse encrypted communication links.\nLimit the access to both development and control system by physical means, operating system features, etc.\nProtect both development and control system by using up to date virus detection solutions.\n\nFor further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "A fixed firmware for affected devices is planned for Q1 2024.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 8.8,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 8.8,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
}
],
"title": "CVE-2022-47385"
},
{
"cve": "CVE-2022-47384",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "description",
"text": "An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead\u00a0to a denial-of-service condition, memory overwriting, or remote code execution.",
"title": "Vulnerability Description"
}
],
"product_status": {
"known_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "mitigation",
"details": "Vulnerabilities of CODESYS Advisory 2023-02:\u2022 Please make sure that the \u0027port authentication\u0027 option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.\u2022 Please change the default admin password.\nVulnerability of CODESYS Advisory 2023-03:\u2022 This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.\nIn addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:\n\nUse controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.\nUse firewalls to protect and separate the control system network from other networks.\nUse VPN (Virtual Private Networks) tunnels if remote access is required.\nActivate and apply user management and password features.\nUse encrypted communication links.\nLimit the access to both development and control system by physical means, operating system features, etc.\nProtect both development and control system by using up to date virus detection solutions.\n\nFor further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "A fixed firmware for affected devices is planned for Q1 2024.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 8.8,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 8.8,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
}
],
"title": "CVE-2022-47384"
},
{
"cve": "CVE-2022-47383",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "description",
"text": "An authenticated, remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead\u00a0to a denial-of-service condition, memory overwriting, or remote code execution.",
"title": "Vulnerability Description"
}
],
"product_status": {
"known_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "mitigation",
"details": "Vulnerabilities of CODESYS Advisory 2023-02:\u2022 Please make sure that the \u0027port authentication\u0027 option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.\u2022 Please change the default admin password.\nVulnerability of CODESYS Advisory 2023-03:\u2022 This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.\nIn addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:\n\nUse controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.\nUse firewalls to protect and separate the control system network from other networks.\nUse VPN (Virtual Private Networks) tunnels if remote access is required.\nActivate and apply user management and password features.\nUse encrypted communication links.\nLimit the access to both development and control system by physical means, operating system features, etc.\nProtect both development and control system by using up to date virus detection solutions.\n\nFor further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "A fixed firmware for affected devices is planned for Q1 2024.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 8.8,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 8.8,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
}
],
"title": "CVE-2022-47383"
},
{
"cve": "CVE-2022-47382",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "description",
"text": "An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead\u00a0to a denial-of-service condition, memory overwriting, or remote code execution.",
"title": "Vulnerability Description"
}
],
"product_status": {
"known_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "mitigation",
"details": "Vulnerabilities of CODESYS Advisory 2023-02:\u2022 Please make sure that the \u0027port authentication\u0027 option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.\u2022 Please change the default admin password.\nVulnerability of CODESYS Advisory 2023-03:\u2022 This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.\nIn addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:\n\nUse controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.\nUse firewalls to protect and separate the control system network from other networks.\nUse VPN (Virtual Private Networks) tunnels if remote access is required.\nActivate and apply user management and password features.\nUse encrypted communication links.\nLimit the access to both development and control system by physical means, operating system features, etc.\nProtect both development and control system by using up to date virus detection solutions.\n\nFor further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "A fixed firmware for affected devices is planned for Q1 2024.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 8.8,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 8.8,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
}
],
"title": "CVE-2022-47382"
},
{
"cve": "CVE-2022-47381",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "description",
"text": "An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in multiple CODESYS products in multiple versions to write data into the stack which can lead\u00a0to a denial-of-service condition, memory overwriting, or remote code execution.",
"title": "Vulnerability Description"
}
],
"product_status": {
"known_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "mitigation",
"details": "Vulnerabilities of CODESYS Advisory 2023-02:\u2022 Please make sure that the \u0027port authentication\u0027 option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.\u2022 Please change the default admin password.\nVulnerability of CODESYS Advisory 2023-03:\u2022 This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.\nIn addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:\n\nUse controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.\nUse firewalls to protect and separate the control system network from other networks.\nUse VPN (Virtual Private Networks) tunnels if remote access is required.\nActivate and apply user management and password features.\nUse encrypted communication links.\nLimit the access to both development and control system by physical means, operating system features, etc.\nProtect both development and control system by using up to date virus detection solutions.\n\nFor further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "A fixed firmware for affected devices is planned for Q1 2024.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 8.8,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 8.8,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
}
],
"title": "CVE-2022-47381"
},
{
"cve": "CVE-2022-47380",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "description",
"text": "An authenticated remote attacker may use a stack based\u00a0 out-of-bounds write vulnerability in multiple CODESYS products in multiple versions to write data into the stack which can lead\u00a0to a denial-of-service condition, memory overwriting, or remote code execution.",
"title": "Vulnerability Description"
}
],
"product_status": {
"known_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "mitigation",
"details": "Vulnerabilities of CODESYS Advisory 2023-02:\u2022 Please make sure that the \u0027port authentication\u0027 option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.\u2022 Please change the default admin password.\nVulnerability of CODESYS Advisory 2023-03:\u2022 This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.\nIn addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:\n\nUse controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.\nUse firewalls to protect and separate the control system network from other networks.\nUse VPN (Virtual Private Networks) tunnels if remote access is required.\nActivate and apply user management and password features.\nUse encrypted communication links.\nLimit the access to both development and control system by physical means, operating system features, etc.\nProtect both development and control system by using up to date virus detection solutions.\n\nFor further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "A fixed firmware for affected devices is planned for Q1 2024.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 8.8,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 8.8,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
}
],
"title": "CVE-2022-47380"
},
{
"cve": "CVE-2022-47379",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "description",
"text": "An authenticated, remote attacker may use a out-of-bounds write vulnerability in multiple CODESYS products in multiple versions to write data into memory which can lead\u00a0to a denial-of-service condition, memory overwriting, or remote code execution.",
"title": "Vulnerability Description"
}
],
"product_status": {
"known_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "mitigation",
"details": "Vulnerabilities of CODESYS Advisory 2023-02:\u2022 Please make sure that the \u0027port authentication\u0027 option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.\u2022 Please change the default admin password.\nVulnerability of CODESYS Advisory 2023-03:\u2022 This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.\nIn addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:\n\nUse controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.\nUse firewalls to protect and separate the control system network from other networks.\nUse VPN (Virtual Private Networks) tunnels if remote access is required.\nActivate and apply user management and password features.\nUse encrypted communication links.\nLimit the access to both development and control system by physical means, operating system features, etc.\nProtect both development and control system by using up to date virus detection solutions.\n\nFor further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "A fixed firmware for affected devices is planned for Q1 2024.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 8.8,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 8.8,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
}
],
"title": "CVE-2022-47379"
},
{
"cve": "CVE-2022-47378",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "description",
"text": "Multiple CODESYS products in multiple versions are prone to a improper input validation vulnerability. An authenticated remote attacker may craft specific requests that use the vulnerability leading to a denial-of-service condition.",
"title": "Vulnerability Description"
}
],
"product_status": {
"known_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
},
"remediations": [
{
"category": "mitigation",
"details": "Vulnerabilities of CODESYS Advisory 2023-02:\u2022 Please make sure that the \u0027port authentication\u0027 option in the web-based management is activated. In this way none of the vulnerabilities can be exploited by unauthenticated users.\u2022 Please change the default admin password.\nVulnerability of CODESYS Advisory 2023-03:\u2022 This vulnerability exists in the CODESYS programming service which is needed for commission only. Deactivate the CODESYS programming port in the web-based management if you do not need the service.\nIn addition to the mitigation hints CODESYS GmbH recommends the following general defense measures to reduce the risk of exploits:\n\nUse controllers and devices only in a protected environment to minimize network exposure and ensure they are not accessible from outside.\nUse firewalls to protect and separate the control system network from other networks.\nUse VPN (Virtual Private Networks) tunnels if remote access is required.\nActivate and apply user management and password features.\nUse encrypted communication links.\nLimit the access to both development and control system by physical means, operating system features, etc.\nProtect both development and control system by using up to date virus detection solutions.\n\nFor further impact information and risk mitigation, please refer to the official CODESYS Advisory Website at https://www.codesys.com/security/security-reports.html",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "A fixed firmware for affected devices is planned for Q1 2024.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 6.5,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 6.5,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005"
]
}
],
"title": "CVE-2022-47378"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…