CVE-2021-29240

CWE-345: INSUFFICIENT VERIFICATION OF DATA AUTHENTICITY
The Package Manager of the CODESYS Development System does not check the validity of packages before installation and may be used to install CODESYS packages with malicious content.

Risk Information

  • CVE ID
  • CVE-2021-29240
  • Vendor
  • 3S CODESYS
  • Product
  • CODESYS Development System
  • CVSS v3
  • 7.8