CVE-2025-41700

Vulnerability Description

An unauthenticated attacker can trick a local user into executing arbitrary code by opening a deliberately manipulated CODESYS project file with a CODESYS development system. This arbitrary code is executed in the user context.

Vulnerability Details

Published Date

December 01, 2025

Last Modified

December 01, 2025

Source

MITRE

Vendor

CODESYS

Product

CODESYS Development System

External References

https://certvde.com/de/advisories/VDE-2025-101

Vulnerability Description

Vulnerability Details

External References

Discussion (0)

Add Comment