PatchSiren

CODESYS GmbH CVE debriefs

These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.

MEDIUM CODESYS GmbH CVE published 2024-11-21

CVE-2024-6876

CVE-2024-6876 is a medium-severity out-of-bounds read vulnerability in the OSCAT Basic Library, published by CISA on 2024-11-21. The flaw allows a local, unprivileged attacker to access limited internal PLC data and potentially crash the affected service. The vulnerability affects CODESYS OSCAT Basic Library version 3.3.5.0 and earlier versions of the oscat.de OSCAT Basic Library (<=3.3.5 and <=335). CODE [truncated]