After successful authentication as a user in multiple Codesys products in multiple versions, specific crafted network communication requests with inconsistent content can cause the CmpAppForce component to read internally from an invalid address, potentially leading to a denial-of-service condition. This vulnerability is different to CVE-2023-37559
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://cert.vde.com/en/advisories/VDE-2023-019/ |
History
Fri, 11 Oct 2024 21:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: CERTVDE
Published: 2023-08-03T11:06:36.112Z
Updated: 2024-10-11T18:09:20.780Z
Reserved: 2023-07-07T07:39:19.121Z
Link: CVE-2023-37558
Vulnrichment
Updated: 2024-08-02T17:16:30.767Z
NVD
Status : Modified
Published: 2023-08-03T12:15:10.890
Modified: 2024-11-21T08:11:56.503
Link: CVE-2023-37558
Redhat
No data.