VDE-2021-055 — Vulnetix

VDE-2021-055 PUBLISHED CVSS 6.5 MEDIUM

The software product PMC programming tool from Pilz is based on the software CODESYS Development System from CODESYS GmbH. This software is affected by several vulnerabilities, which an attacker can exploit locally or via the network. This means that, in a worst case, attackers could execute arbitrary program code on the PC on which the PMC programming tool is used.

Risk Scores

CVSS v3.1

6.5

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected Products

Vendor	Product	Versions
	PMC programming tool 2.x.x vers:all/*

Timeline

Apr 26, 2022 CVE Published

References

https://certvde.com/en/advisories/VDE-2021-055/ advisory
https://pilz.csaf-tp.certvde.com/.well-known/csaf/white/2022/vde-2021-055.json advisory
https://www.pilz.com url
https://certvde.com/en/advisories/vendor/pilz/ url

Open in Interactive Console →