CVE-2021-29239

Beschreibung:
CODESYS Development System 3 before 3.5.17.0 displays or executes malicious documents or files embedded in libraries without first checking their validity.

CWE: CWE-345

CVSS-Bewertung
CVSS 2: MEDIUM – 4.6 (Version: 2.0)
CVSS 3: HIGH – 7.8 (Version: 3.1)

Links:

NVD – CVE-2021-29239
CVE – CVE-2021-29239

Link (max. 20) Quelle Tags
https://customers.codesys.com/index.php MISC Permissions Required Vendor Advisory
https://www.codesys.com/security/security-reports.html MISC Vendor Advisory
https://customers.codesys.com/index.php?eID=dumpFile&t=f&f=14639&token=fa836f8bd4a2184aa9323a639ca9f2aaf1538412&download= MISC Vendor Advisory

Quelle: NVD – CVE-2021-29239
Datum Veröffentlichung: 2021-05-03T14:15Z, Datum letzte Änderung: 2021-05-07T13:54Z