CVE-2023-3669
published 2023-08-03CVE-2023-3669: A missing Brute-Force protection in CODESYS Development System prior to 3.5.19.20 allows a local attacker to have unlimited attempts of guessing the password…
low3.3CVSS 3.1
AVLACLPRLUINSUCLINAN
A missing Brute-Force protection in CODESYS Development System prior to 3.5.19.20 allows a local attacker to have unlimited attempts of guessing the password within an import dialog.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| codesys | codesys_development_system | >= 3.0.0.0 < 3.5.19.20 | 3.5.19.20 |
| codesys | development_system | < 3.5.19.20 | 3.5.19.20 |
CVSS provenance
nvdv3.13.3LOWCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
osv5.5MEDIUM