3S-Smart Software Solutions GmbH CODESYS V3 Library Manager, all versions prior to 3.5.16.0, allows the system to display active library content without checking its validity, which may allow the contents of manipulated libraries to be displayed or executed. The issue also exists for source libraries, but 3S-Smart Software Solutions GmbH strongly recommends distributing compiled libraries only.
References
Link | Resource |
---|---|
https://customers.codesys.com/index.php?eID=dumpFile&t=f&f=12940&token=7723e5ed99830656f487e218e73dce2de751102f | Vendor Advisory |
https://www.us-cert.gov/ics/advisories/icsa-19-255-02 | Third Party Advisory US Government Resource |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: icscert
Published: 2019-09-17T19:04:54
Updated: 2020-05-15T18:45:00
Reserved: 2019-07-11T00:00:00
Link: CVE-2019-13538
JSON object: View
NVD Information
Status : Analyzed
Published: 2019-09-17T20:15:11.157
Modified: 2021-06-09T14:30:37.120
Link: CVE-2019-13538
JSON object: View
Redhat Information
No data.
CWE