CVE-2019-13538

Name of the Vulnerable Software and Affected Versions 3S-Smart Software Solutions GmbH CODESYS V3 Library Manager versions prior to 3.5.16.0

Description The issue allows the system to display active library content without checking its validity, potentially enabling the display or execution of manipulated library contents. This also affects source libraries, although it is recommended to distribute compiled libraries only.

Recommendations For versions prior to 3.5.16.0, update to version 3.5.16.0 or later to resolve the issue. As a temporary workaround, consider restricting the use of source libraries and focus on distributing compiled libraries only, as recommended by 3S-Smart Software Solutions GmbH.