Unauthenticated Remote Attackers Can Cause Denial of Service (DoS)
CVE-2024-8175

7.5HIGH

Key Information:

Vendor: CODESYS
Vendor: CVE Published:; 25 September 2024

What is CVE-2024-8175?

An unauthenticated remote attacker can exploit a vulnerability in CODESYS Web Server to manipulate and access invalid memory regions. This action can lead to a denial of service (DoS) condition, disrupting the normal operation of the web server. The issue emphasizes the necessity for rigorous security measures and timely patching to protect against potential exploitation.

References

https://cert.vde.com/en/advisories/VDE-2024-057

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 25, 2024