After successful authentication as a user in multiple Codesys products in multiple versions, specific crafted network communication requests with inconsistent content can cause the CmpAppForce component to read internally from an invalid address, potentially leading to a denial-of-service condition. This vulnerability is different to CVE-2023-37558
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://cert.vde.com/en/advisories/VDE-2023-019/ |
History
Fri, 11 Oct 2024 21:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: CERTVDE
Published: 2023-08-03T11:06:56.079Z
Updated: 2024-10-11T18:09:05.823Z
Reserved: 2023-07-07T07:39:19.122Z
Link: CVE-2023-37559
Vulnrichment
Updated: 2024-08-02T17:16:30.700Z
NVD
Status : Modified
Published: 2023-08-03T12:15:10.977
Modified: 2024-11-21T08:11:56.653
Link: CVE-2023-37559
Redhat
No data.