Design/Logic Flaw

2021-05-0314:15:00

PRIOn knowledge base

www.prio-n.com

7.6 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

12.6%

JSON

CODESYS Development System 3 before 3.5.17.0 displays or executes malicious documents or files embedded in libraries without first checking their validity.

CPENameOperatorVersion
development_systemge3.0
development_systemlt3.5.17.0

CPE	Name	Operator	Version
	development_system	ge	3.0
	development_system	lt	3.5.17.0

References

customers.codesys.com/index.php

customers.codesys.com/index.php?eID=dumpFile&t=f&f=14639&token=fa836f8bd4a2184aa9323a639ca9f2aaf1538412&download=

www.codesys.com/security/security-reports.html