CVE-2023-3663
published 2023-08-03CVE-2023-3663: In CODESYS Development System versions from 3.5.11.20 and before 3.5.19.20 a missing integrity check might allow an unauthenticated remote attacker to…
high8.8CVSS 3.1
AVNACLPRNUIRSUCHIHAH
In CODESYS Development System versions from 3.5.11.20 and before 3.5.19.20 a missing integrity check might allow an unauthenticated remote attacker to manipulate the content of notifications received via HTTP by the CODESYS notification server.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| codesys | codesys_development_system | >= 3.5.11.20 < 3.5.19.20 | 3.5.19.20 |
| codesys | development_system | >= 3.5.11.20 < 3.5.19.20 | 3.5.19.20 |