CVE-2023-3663

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
03/08/2023
Last modified:
02/10/2024

Description

In CODESYS Development System versions from 3.5.11.20 and before 3.5.19.20 a missing integrity check might allow an unauthenticated remote attacker to manipulate the content of notifications received via HTTP by the CODESYS notification server.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:codesys:development_system:*:*:*:*:*:*:*:* 3.5.11.20 (including) 3.5.19.20 (excluding)


References to Advisories, Solutions, and Tools