CVE-2019-13532

EPSS 3.2%CWE-22

CODESYS V3 web server, all versions prior to 3.5.14.10, allows an attacker to send specially crafted http or https requests which may allow access to files outside the restricted working directory of the controller.

Productos afectados

n/a · CODESYS V3 web server

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://www.us-cert.gov/ics/advisories/icsa-19-255-01