CNNVD-202512-115 Information

CNNVD ID

CNNVD-202512-115

Related CVE

CVE-2025-41700

• CNNVD Published: 2025-12-01

Description (Chinese)

CODESYS Development System是德国CODESYS公司的一套用于工业控制器和自动化技术领域的编程工具。 CODESYS Development System存在代码问题漏洞，该漏洞源于未经身份验证的攻击者可诱骗本地用户执行特制CODESYS项目文件，可能导致任意代码执行。

Description (English)

CODESYS Development System is a programming tool for CODESYS in Germany in the field of industrial controllers and automation technology. There is a code gap in CODESYS Development System, which stems from the fact that unidentified assailants can lure local users into implementing specially designed CODESYS project documents, which may lead to arbitrary code implementation.

Hazard Level

Medium

Vulnerability Type

代码问题

Affected Vendor

CODESYS

Published

2025-12-01

Last Modified

2026-02-24

References

https://certvde.com/de/advisories/VDE-2025-101 https://access.redhat.com/security/cve/cve-2025-41700

Patch

https://www.codesys.com/ecosystem/services/download/