Microsoft Threat Intelligence detected a number of vulnerabilities in Codesys SDK which affect a large number of products. Codesys is compatible with 1000 different PLCs from 500 different manufacturers.
The issues that can result in Remote Code Execution and Denial of Service were reported to Codesys in September 2022 and patches are available. The importance of the vulnerabilities is tempered somewhat as it requires authentication. If an adversary is able to authenticate, other lower complexity attacks would most likely be in play.
Splice shields vulnerable equipment inside and encrypted overlay network, disrupting the kill-chain for would-be attackers.
Share