In CODESYS Development System versions from 3.5.11.20 and before 3.5.19.20 a missing integrity check might allow an unauthenticated remote attacker to manipulate the content of notifications received via HTTP by the CODESYS notification server.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://cert.vde.com/en/advisories/VDE-2023-022/ |
History
No history.
MITRE
Status: PUBLISHED
Assigner: CERTVDE
Published: 2023-08-03T10:55:08.945Z
Updated: 2024-08-02T07:01:57.323Z
Reserved: 2023-07-13T13:04:46.976Z
Link: CVE-2023-3663
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2023-08-03T11:15:10.077
Modified: 2023-08-08T15:43:48.747
Link: CVE-2023-3663
Redhat
No data.