Описание
An unauthenticated remote attacker may cause the visualisation server of the CODESYS Control runtime system to access a resource with a pointer of wrong type, potentially leading to a denial-of-service (DoS) condition.
Затрагиваемое ПО
Codesys Control for beaglebone slCodesys Control for empc-a\/imx6 slCodesys Control for iot2000 slCodesys Control for linux arm slCodesys Control for linux slCodesys Control for pfc100 slCodesys Control for pfc200 slCodesys Control for plcnext slCodesys Control for raspberry pi slCodesys Control for wago touch panels 600 slCodesys Control rte slCodesys Control rte sl \(for beckhoff cx\)Codesys Control win slCodesys Hmi slCodesys Remote target visuCodesys Runtime toolkitCodesys Virtual control sl
CVSS
| Балл | 7.5 — высокая |
| Вектор | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
Источники
https://certvde.com/de/advisories/VDE-2025-100