PT-2026-43198 · Codesys · Codesys Control Rte+15
Abb Ag
·
Published
2026-05-26
·
Updated
2026-05-26
·
CVE-2026-8046
CVSS v3.1
8.1
High
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H |
The affected products insufficiently verify authorization when deleting user accounts. An authenticated, low-privileged remote user can exploit this vulnerability to delete other users, including those with higher privileges.
Fix
Incorrect Authorization
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Codesys Control Rte
Codesys Control Rte (For Beckhoff Cx) Sl
Codesys Control Win
Codesys Control For Beaglebone
Codesys Control For Iot2000
Codesys Control For Linux Arm Sl
Codesys Control For Linux
Codesys Control For Pfc100
Codesys Control For Pfc200
Codesys Control For Plcnext
Codesys Control For Raspberry Pi
Codesys Control For Wago Touch Panels 600 Sl
Codesys Control For Empc-A/Imx6
Codesys Hmi
Codesys Runtime Toolkit
Codesys Virtual Control Sl