After successful authentication as a user in multiple Codesys products in multiple versions, specific crafted remote communication requests can cause the CmpAppBP component to overwrite a heap-based buffer, which can lead to a denial-of-service condition.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://cert.vde.com/en/advisories/VDE-2023-019/ |
History
No history.
MITRE
Status: PUBLISHED
Assigner: CERTVDE
Published: 2023-08-03T11:06:17.884Z
Updated: 2024-08-02T17:16:30.379Z
Reserved: 2023-07-07T07:39:19.121Z
Link: CVE-2023-37557
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2023-08-03T12:15:10.797
Modified: 2023-08-08T15:43:40.077
Link: CVE-2023-37557
Redhat
No data.