After successful authentication as a user in multiple Codesys products in multiple versions, specific crafted network communication requests with inconsistent content can cause the CmpAppForce component to read internally from an invalid address, potentially leading to a denial-of-service condition. This vulnerability is different to CVE-2023-37559
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://cert.vde.com/en/advisories/VDE-2023-019/ |
History
No history.
MITRE
Status: PUBLISHED
Assigner: CERTVDE
Published: 2023-08-03T11:06:36.112Z
Updated: 2024-08-02T17:16:30.767Z
Reserved: 2023-07-07T07:39:19.121Z
Link: CVE-2023-37558
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2023-08-03T12:15:10.890
Modified: 2023-08-08T15:43:58.523
Link: CVE-2023-37558
Redhat
No data.