EUVD-2024-54204

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

Unauthenticated remote attacker can access limited PLC network information but user management prevents full access.

Reporter	Title	Published	Views	Family All 9
Circl	CVE-2024-41975	18 Mar 202513:21	–	circl
CNNVD	CODESYS Edge Gateway 安全漏洞	18 Mar 202500:00	–	cnnvd
CVE	CVE-2024-41975	18 Mar 202511:04	–	cve
Cvelist	CVE-2024-41975 CODESYS (Edge) Gateway for Windows insecure default	18 Mar 202511:04	–	cvelist
ICS	ABB Automation Builder Gateway for Windows	24 Feb 202600:30	–	ics
NVD	CVE-2024-41975	18 Mar 202511:15	–	nvd
Positive Technologies	PT-2025-11584	18 Mar 202500:00	–	ptsecurity
RedhatCVE	CVE-2024-41975	9 Jan 202609:04	–	redhatcve
Vulnrichment	CVE-2024-41975 CODESYS (Edge) Gateway for Windows insecure default	18 Mar 202511:04	–	vulnrichment

[
  {
    "enisaIdVendor": [
      {
        "id": "d2e2dc0d-ab75-369c-91a3-b95503c89b56",
        "vendor": {
          "name": "CODESYS"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "296c6adc-6c8f-3bd0-9eb7-ffd412f962d9",
        "product": {
          "name": "CODESYS Gateway for Windows"
        },
        "product_version": "0 <3.5.21.0"
      },
      {
        "id": "c10334a0-4a00-3ed6-aaab-4f215e1b42b7",
        "product": {
          "name": "CODESYS Edge Gateway"
        },
        "product_version": "0 <3.5.21.0"
      }
    ]
  }
]

Source	Link
cert	www.cert.vde.com/en/advisories/VDE-2025-013

03 Oct 2025 20:07Current

6.6Medium risk

Vulners AI Score6.6

CVSS 3.15.3

EPSS0.00387

SSVC