CVE-2022-4048
published 2023-05-15CVE-2022-4048: Inadequate Encryption Strength in CODESYS Development System V3 versions prior to V3.5.18.40 allows an unauthenticated local attacker to access and manipulate…
high7.7CVSS 3.1
AVLACLPRNUINSUCHIHAN
Inadequate Encryption Strength in CODESYS Development System V3 versions prior to V3.5.18.40 allows an unauthenticated local attacker to access and manipulate code of the encrypted boot application.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| codesys | codesys_development_system_v3 | >= V0.0.0.0 < V3.5.18.40 | V3.5.18.40 |
| codesys | development_system_v3 | < 3.5.18.40 | 3.5.18.40 |