Infosecurity-magazine.com

Microsoft: Critical CODESYS Flaws Could Shut Down Power Plants

Microsoft researchers have identified multiple high-severity vulnerabilities that could enable threat actors to shut down power plants. The flaws were discovered within the CODESYS software ...
CSOonline

Microsoft demonstrates remote code execution exploit against PLCs that support CODESYS

Researchers from Microsoft have demonstrated how programmable logic controllers (PLCs) that support the CODESYS runtime can be taken over by exploiting high-severity remote code execution (RCE) ...
Threat Post

Critical CODESYS Bug Allows Remote Code Execution

CVE-2020-10245, a heap-based buffer overflow that rates 10 out of 10 in severity, exists in the CODESYS web server and takes little skill to exploit. A critical flaw in a web server for the CODESYS ...
InfoWorld

Critical flaw found in software used by many industrial control systems

CoDeSys, a piece of software running on industrial control systems (ICS) from over 200 vendors contains a vulnerability that allows potential attackers to execute sensitive commands on the vulnerable ...