CVE-2023-3662

CWE-4273 documents3 sources
Severity
7.3HIGH
EPSS
0.0%
top 91.39%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Codesys Codesys Development SystemCodesys Development System
Timeline
PublishedAug 3

Description

In CODESYS Development System versions from 3.5.17.0 and prior to 3.5.19.20 a vulnerability allows for execution of binaries from the current working directory in the users context .

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:HExploitability: 1.3 | Impact: 5.9

Affected Packages2 packages

NVDcodesys/development_system3.5.17.03.5.19.20
CVEListV5codesys/codesys_development_system3.5.17.03.5.19.20

🔴Vulnerability Details

2
CVEList
CODESYS: Vulnerability in CODESYS Development System allows for execution of binaries2023-08-03
GHSA
GHSA-f7mf-8v49-37qx: In CODESYS Development System versions from 32023-08-03
CVE-2023-3662 (HIGH CVSS 7.3) | In CODESYS Development System versi | cvebase.io