PT-2025-31798 · Codesys · Codesys Runtime Toolkit

Luca Borzacchiello

Published

2025-08-04

Updated

2025-08-04

CVE-2025-41658

CVSS v3.1

5.5

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions:

CODESYS Runtime Toolkit-based products (affected versions not specified)

Description:

CODESYS Runtime Toolkit-based products may expose sensitive files to local low-privileged operating system users due to default file permissions.

Recommendations:

At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Incorrect Default Permissions

Weakness Enumeration

CVE-2025-41658

Codesys Runtime Toolkit