VDB
FSA-202401
FSA-202401
PUBLISHED
CVSS 7.5 HIGH
Several high severity vulnerabilities in CODESYS V3 affecting Festo products could lead to Remote Code Execution or Denial of Service.
Risk Scores
CVSS v3.1
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Controller CECC-X-M1-MV-S1 (Gen4) | ||
| Control block CPX-E-CEC-M1-EP vers:all/* | ||
| Controller CECC-D-BA <=7 | ||
| Control block CPX-CEC-M1-V3 <=8 | ||
| Control block CPX-E-CEC-C1-EP <8 | ||
| Control block CPX-E-CEC-M1 <=5 | ||
| Controller CECC-X-M1 (Gen3) | ||
| Control block CPX-E-CEC-C1 <=5 | ||
| Controller CECC-X-M1-MV (Gen4) | ||
| Controller CECC-D <=7 | ||
| Controller CECC-D-CS <=7 | ||
| Control block CPX-E-CEC-M1-PN vers:all/* | ||
| Control block CPX-CEC-S1-V3 <=8 | ||
| Controller CECC-S <=7 | ||
| Control block CPX-E-CEC-C1-PN <8 | ||
| Controller CECC-X-M1-MV-S1 (Gen3) | ||
| Controller CECC-X-M1 (Gen4) | ||
| Control block CPX-CEC-C1-V3 <=8 | ||
| Controller CECC-LK <=7 | ||
| Controller CECC-X-M1-MV (Gen3) |
Timeline
- Jan 30, 2024 CVE Published
- Nov 4, 2025 CVE Updated