File and language versions

Title:
FSA-202406 - Security Advisory - Several Codesys Gateway v2 vulnerabilities in Codesys provided by Festo

Description:

An unauthenticated attacker would be able to send crafted requests to cause the CODESYS Gateway Server V2 to allocate excessive memory or consume all available TCP client connections. Besides, passwords are insufficiently checked during login.

All versions of the following CODESYS V2 product prior version V2.3.9.38 are affected:

• CODESYS Gateway Server

The identified vulnerabilities could lead to denial-of-service attacks, exhaustion of TCP connections, and unauthorized access to the system.

Document type:
Security Advisory

	Title	Version
	CSAF edition of FSA-202406	fsa-202406.json English [en] File size: 13 KB Version: 2.0.0
	PDF edition of FSA-202406	fsa-202406_Several_Codesys_Gateway_v2_vulnerabilities_in_Codesys_provided_by_Festo.pdf English [en] File size: 51 KB Version: 2.0.0