CVE-2021-30194

Name of the Vulnerable Software and Affected Versions CODESYS V2 Web-Server versions prior to 1.1.9.20

Description The issue is related to an out-of-bounds read in the CODESYS V2 Web-Server component of the CODESYS industrial automation software suite. This can be exploited by a remote attacker to disclose protected information and cause a denial of service.

Recommendations For versions prior to 1.1.9.20, update to version 1.1.9.20 or later to resolve the issue. As a temporary workaround, consider restricting access to the web server component to minimize the risk of exploitation.