CVE-2021-30195

Name of the Vulnerable Software and Affected Versions CODESYS V2 runtime system versions prior to 2.4.7.55

Description The issue exists due to the reading of data beyond the boundaries of a specified buffer in the CODESYS Control V2 Linux SysFile library of the CODESYS industrial automation software complex. Exploitation of this issue may allow a remote attacker to cause a denial of service. The problem is caused by improper input validation.

Recommendations For versions prior to 2.4.7.55, update to version 2.4.7.55 or later to resolve the issue. As a temporary workaround, consider restricting access to the system to minimize the risk of exploitation.