// For flags

CVE-2023-37548

CODESYS: Improper Input Validation in CmpApp component

Severity Score

6.5
*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

Track
*SSVC
Descriptions

In multiple Codesys products in multiple versions, after successful authentication as a user, specific crafted network communication requests with inconsistent content can cause the CmpApp component to read internally from an invalid address, potentially leading to a denial-of-service condition. This vulnerability is different to CVE-2023-37545, CVE-2023-37546CVE-2023-37547, CVE-2023-37549 and CVE-2023-37550

*Credits: Vladimir Tokarev, Section 52, Azure IoT Security at Microsoft
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High
* Common Vulnerability Scoring System
SSVC
  • Decision:Track
Exploitation
None
Automatable
No
Tech. Impact
Partial
* Organization's Worst-case Scenario
Timeline
  • 2023-07-07 CVE Reserved
  • 2023-08-03 CVE Published
  • 2024-08-09 EPSS Updated
  • 2024-10-11 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
  • CWE-20: Improper Input Validation
CAPEC
References (1)
URL Tag Source
https://cert.vde.com/en/advisories/VDE-2023-019 Third Party Advisory
URL Date SRC
URL Date SRC
URL Date SRC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Codesys
Search vendor "Codesys"
Control For Beaglebone Sl
Search vendor "Codesys" for product "Control For Beaglebone Sl"
< 4.10.0.0
Search vendor "Codesys" for product "Control For Beaglebone Sl" and version " < 4.10.0.0"
-
Affected
Codesys
Search vendor "Codesys"
Control For Empc-a\/imx6 Sl
Search vendor "Codesys" for product "Control For Empc-a\/imx6 Sl"
< 4.10.0.0
Search vendor "Codesys" for product "Control For Empc-a\/imx6 Sl" and version " < 4.10.0.0"
-
Affected
Codesys
Search vendor "Codesys"
Control For Iot2000 Sl
Search vendor "Codesys" for product "Control For Iot2000 Sl"
< 4.10.0.0
Search vendor "Codesys" for product "Control For Iot2000 Sl" and version " < 4.10.0.0"
-
Affected
Codesys
Search vendor "Codesys"
Control For Linux Sl
Search vendor "Codesys" for product "Control For Linux Sl"
< 4.10.0.0
Search vendor "Codesys" for product "Control For Linux Sl" and version " < 4.10.0.0"
-
Affected
Codesys
Search vendor "Codesys"
Control For Pfc100 Sl
Search vendor "Codesys" for product "Control For Pfc100 Sl"
< 4.10.0.0
Search vendor "Codesys" for product "Control For Pfc100 Sl" and version " < 4.10.0.0"
-
Affected
Codesys
Search vendor "Codesys"
Control For Pfc200 Sl
Search vendor "Codesys" for product "Control For Pfc200 Sl"
< 4.10.0.0
Search vendor "Codesys" for product "Control For Pfc200 Sl" and version " < 4.10.0.0"
-
Affected
Codesys
Search vendor "Codesys"
Control For Plcnext Sl
Search vendor "Codesys" for product "Control For Plcnext Sl"
< 4.10.0.0
Search vendor "Codesys" for product "Control For Plcnext Sl" and version " < 4.10.0.0"
-
Affected
Codesys
Search vendor "Codesys"
Control For Raspberry Pi Sl
Search vendor "Codesys" for product "Control For Raspberry Pi Sl"
< 4.10.0.0
Search vendor "Codesys" for product "Control For Raspberry Pi Sl" and version " < 4.10.0.0"
-
Affected
Codesys
Search vendor "Codesys"
Control For Wago Touch Panels 600 Sl
Search vendor "Codesys" for product "Control For Wago Touch Panels 600 Sl"
< 4.10.0.0
Search vendor "Codesys" for product "Control For Wago Touch Panels 600 Sl" and version " < 4.10.0.0"
-
Affected
Codesys
Search vendor "Codesys"
Control Rte Sl
Search vendor "Codesys" for product "Control Rte Sl"
< 3.5.19.20
Search vendor "Codesys" for product "Control Rte Sl" and version " < 3.5.19.20"
-
Affected
Codesys
Search vendor "Codesys"
Control Rte Sl \(for Beckhoff Cx\)
Search vendor "Codesys" for product "Control Rte Sl \(for Beckhoff Cx\)"
< 3.5.19.20
Search vendor "Codesys" for product "Control Rte Sl \(for Beckhoff Cx\)" and version " < 3.5.19.20"
-
Affected
Codesys
Search vendor "Codesys"
Control Runtime System Toolkit
Search vendor "Codesys" for product "Control Runtime System Toolkit"
< 3.5.19.20
Search vendor "Codesys" for product "Control Runtime System Toolkit" and version " < 3.5.19.20"
-
Affected
Codesys
Search vendor "Codesys"
Control Win Sl
Search vendor "Codesys" for product "Control Win Sl"
< 3.5.19.20
Search vendor "Codesys" for product "Control Win Sl" and version " < 3.5.19.20"
-
Affected
Codesys
Search vendor "Codesys"
Development System
Search vendor "Codesys" for product "Development System"
< 3.5.19.20
Search vendor "Codesys" for product "Development System" and version " < 3.5.19.20"
-
Affected
Codesys
Search vendor "Codesys"
Hmi
Search vendor "Codesys" for product "Hmi"
< 3.5.19.20
Search vendor "Codesys" for product "Hmi" and version " < 3.5.19.20"
-
Affected
Codesys
Search vendor "Codesys"
Safety Sil2
Search vendor "Codesys" for product "Safety Sil2"
< 3.5.19.20
Search vendor "Codesys" for product "Safety Sil2" and version " < 3.5.19.20"
-
Affected