In multiple versions of multiple Codesys products, after successful authentication as a user, specific crafted network communication requests with inconsistent content can cause the CmpAppBP component to read internally from an invalid address, potentially leading to a denial-of-service condition. This vulnerability is different to CVE-2023-37553, CVE-2023-37554, CVE-2023-37555 and CVE-2023-37556.
References
Link Resource
https://cert.vde.com/en/advisories/VDE-2023-019/ Third Party Advisory
History

No history.

cve-icon MITRE Information

Status: PUBLISHED

Assigner: CERTVDE

Published: 2023-08-03T11:04:04.128Z

Updated: 2023-08-03T11:04:04.128Z

Reserved: 2023-07-07T07:39:16.323Z


Link: CVE-2023-37552

JSON object: View

cve-icon NVD Information

Status : Analyzed

Published: 2023-08-03T12:15:10.353

Modified: 2023-08-08T15:43:03.593


Link: CVE-2023-37552

JSON object: View

cve-icon Redhat Information

No data.