In multiple versions of multiple Codesys products, after successful authentication as a user, specific crafted network communication requests with inconsistent content can cause the CmpAppBP component to read internally from an invalid address, potentially leading to a denial-of-service condition. This vulnerability is different to CVE-2023-37552, CVE-2023-37553, CVE-2023-37555 and CVE-2023-37556.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
codesys control for empc-a\\/imx6 sl |
||
codesys control for beaglebone sl |
||
codesys control for wago touch panels 600 sl |
||
codesys control for raspberry pi sl |
||
codesys control for plcnext sl |
||
codesys control for pfc200 sl |
||
codesys control for pfc100 sl |
||
codesys control for linux sl |
||
codesys control for iot2000 sl |
||
codesys control rte sl \\(for beckhoff cx\\) |
||
codesys safety sil2 |
||
codesys hmi |
||
codesys development system |
||
codesys control win sl |
||
codesys control runtime system toolkit |
||
codesys control rte sl |