4 matches found
CVE-2021-21869
An unsafe deserialization vulnerability exists in the Engine.plugin ProfileInformation ProfileData functionality of CODESYS GmbH CODESYS Development System 3.5.16 and 3.5.17. A specially crafted file can lead to arbitrary command execution. An attacker can provide a malicious file to trigger this...
CVE-2021-21869
creationtimestamp| type| source ---|---|--- 2021-08-25 22:25:43+00:00| seen| https://t.me/cibsecurity/27871 2026-03-17 12:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-076-01...
CVE-2021-21869
An unsafe deserialization vulnerability exists in the Engine.plugin ProfileInformation ProfileData functionality of CODESYS GmbH CODESYS Development System 3.5.16 and 3.5.17. A specially crafted file can lead to arbitrary command execution. An attacker can provide a malicious file to trigger this...
CVE-2021-21869
CVE-2021-21869 affects CODESYS Development System 3.5.16 and 3.5.17. The unsafe deserialization occurs in Engine.plugin ProfileInformation ProfileData, where a crafted profile file leverages BinaryFormatter.Deserialize to execute arbitrary code. TALOS details show the deserialization occurs in Pr...