#VU107049 Files or Directories Accessible to External Parties in CODESYS products - CVE-2023-37551
Published: April 7, 2025
Vulnerability identifier: #VU107049
Vulnerability risk: Medium
CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/U:Green
CVE-ID: CVE-2023-37551
CWE-ID: CWE-552
Exploitation vector: Remote access
Exploit availability:
No public exploit available
Vulnerable software:
CODESYS Control for BeagleBone SL
CODESYS Control for emPC-A/iMX6 SL
CODESYS Control for IOT2000 SL
CODESYS Control for Linux SL
CODESYS Control for PFC100 SL
CODESYS Control for PFC200 SL
CODESYS Control for PLCnext SL
CODESYS Control for Raspberry Pi SL
CODESYS Control for WAGO Touch Panels 600 SL
CODESYS Control Runtime System Toolkit
CODESYS Development System V3
CODESYS Safety SIL2 Runtime Toolkit
CODESYS Control RTE (for Beckhoff CX) SL
CODESYS Control RTE (SL)
CODESYS Control Win (SL)
CODESYS HMI (SL)
CODESYS Control for BeagleBone SL
CODESYS Control for emPC-A/iMX6 SL
CODESYS Control for IOT2000 SL
CODESYS Control for Linux SL
CODESYS Control for PFC100 SL
CODESYS Control for PFC200 SL
CODESYS Control for PLCnext SL
CODESYS Control for Raspberry Pi SL
CODESYS Control for WAGO Touch Panels 600 SL
CODESYS Control Runtime System Toolkit
CODESYS Development System V3
CODESYS Safety SIL2 Runtime Toolkit
CODESYS Control RTE (for Beckhoff CX) SL
CODESYS Control RTE (SL)
CODESYS Control Win (SL)
CODESYS HMI (SL)
Software vendor:
CODESYS
CODESYS
Description
The vulnerability allows a remote attacker to compromise the target system.
The vulnerability exists due to the files or directories accessible to external parties in the CmpApp component. A remote user can load arbitrary files onto the controller and compromise the integrity of the CODESYS control runtime system.
Remediation
Install updates from vendor's website.