CVE-2024-5000 - Vulnerability Details - OpenCVE

An unauthenticated remote attacker can use a malicious OPC UA client to send a crafted request to affected CODESYS products which can cause a DoS due to incorrect calculation of buffer size.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

No data.

No data.

No data.

References

Link	Providers
https://cert.vde.com/en/advisories/VDE-2024-026
https://customers.codesys.com/index.php?eID=dumpFile&t=f&f=18355&token=e3e5a937ce72602bec39718ddc2f4ba6d983ccd1&download=

History

Mon, 14 Jul 2025 13:45:00 +0000

Type	Values Removed	Values Added
Metrics	epss `{'score': 0.00849}`	epss `{'score': 0.00808}`

Sun, 13 Jul 2025 13:45:00 +0000

Type	Values Removed	Values Added
Metrics	epss `{'score': 0.00311}`	epss `{'score': 0.00849}`

MITRE

Status: PUBLISHED

Assigner: CERTVDE

Published: 2024-06-04T08:54:06.522Z

Updated: 2024-08-01T20:55:10.389Z

Reserved: 2024-05-16T12:09:56.937Z

Link: CVE-2024-5000

Vulnrichment

Updated: 2024-08-01T20:55:10.389Z

NVD

Status : Awaiting Analysis

Published: 2024-06-04T09:15:09.830

Modified: 2024-11-21T09:46:44.830

Link: CVE-2024-5000

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-5000", "assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c", "state": "PUBLISHED", "assignerShortName": "CERTVDE", "dateReserved": "2024-05-16T12:09:56.937Z", "datePublished": "2024-06-04T08:54:06.522Z", "dateUpdated": "2024-08-01T20:55:10.389Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "CODESYS Control for BeagleBone SL", "vendor": "CODESYS", "versions": [{"lessThan": "4.12.0.0", "status": "affected", "version": "0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "CODESYS Control for emPC-A/iMX6 SL", "vendor": "CODESYS", "versions": [{"lessThan": "4.12.0.0", "status": "affected", "version": "0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "CODESYS Control for IOT2000 SL", "vendor": "CODESYS", "versions": [{"lessThan": "4.12.0.0", "status": "affected", "version": "0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "CODESYS Control for Linux ARM SL", "vendor": "CODESYS", "versions": [{"lessThan": "4.12.0.0", "status": "affected", "version": "0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "CODESYS Control for Linux SL", "vendor": "CODESYS", "versions": [{"lessThan": "4.12.0.0", "status": "affected", "version": "0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "CODESYS Control for PFC100 SL", "vendor": "CODESYS", "versions": [{"lessThan": "4.12.0.0", "status": "affected", "version": "0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "CODESYS Control for PFC200 SL", "vendor": "CODESYS", "versions": [{"lessThan": "4.12.0.0", "status": "affected", "version": "0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "CODESYS Control for PLCnext SL", "vendor": "CODESYS", "versions": [{"lessThan": "4.12.0.0", "status": "affected", "version": "0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "CODESYS Control for Raspberry Pi SL", "vendor": "CODESYS", "versions": [{"lessThan": "4.12.0.0", "status": "affected", "version": "0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "CODESYS Control for WAGO Touch Panels 600 SL", "vendor": "CODESYS", "versions": [{"lessThan": "4.12.0.0", "status": "affected", "version": "0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "CODESYS Control RTE (for Beckhoff CX) SL", "vendor": "CODESYS", "versions": [{"lessThan": "3.5.20.10", "status": "affected", "version": "0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "CODESYS Control RTE (SL)", "vendor": "CODESYS", "versions": [{"lessThan": "3.5.20.10", "status": "affected", "version": "0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "CODESYS Runtime Toolkit", "vendor": "CODESYS", "versions": [{"lessThan": "3.5.20.10", "status": "affected", "version": "0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "CODESYS Control Win (SL)", "vendor": "CODESYS", "versions": [{"lessThan": "3.5.20.10", "status": "affected", "version": "0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "CODESYS HMI (SL)", "vendor": "CODESYS", "versions": [{"lessThan": "3.5.20.10", "status": "affected", "version": "0", "versionType": "semver"}]}], "credits": [{"lang": "en", "type": "reporter", "user": "00000000-0000-4000-9000-000000000000", "value": "ABB Schweiz AG."}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "An unauthenticated remote attacker can use a malicious OPC UA client to send a crafted request to affected CODESYS products which can cause a DoS due to incorrect calculation of buffer size.<br><br>"}], "value": "An unauthenticated remote attacker can use a\u00a0malicious OPC UA client to send a crafted request to affected CODESYS products which can cause a DoS due to incorrect calculation of buffer size.\n\n"}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-131", "description": "CWE-131 Incorrect Calculation of Buffer Size", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c", "shortName": "CERTVDE", "dateUpdated": "2024-06-04T08:54:06.522Z"}, "references": [{"url": "https://cert.vde.com/en/advisories/VDE-2024-026"}, {"url": "https://customers.codesys.com/index.php?eID=dumpFile&t=f&f=18355&token=e3e5a937ce72602bec39718ddc2f4ba6d983ccd1&download="}], "source": {"advisory": "VDE-2024-026", "defect": ["CERT@VDE#641630"], "discovery": "UNKNOWN"}, "title": "CODESYS: Incorrect calculation of buffer size can cause DoS on CODESYS OPC UA products", "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}, "adp": [{"affected": [{"vendor": "codesys", "product": "control_for_empc-a\\/imx6_sl", "cpes": ["cpe:2.3:a:codesys:control_for_empc-a\\/imx6_sl:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "4.12.0.0", "versionType": "custom"}]}, {"vendor": "codesys", "product": "control_for_beaglebone_sl", "cpes": ["cpe:2.3:a:codesys:control_for_beaglebone_sl:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "4.12.0.0", "versionType": "custom"}]}, {"vendor": "codesys", "product": "control_for_iot2000_sl", "cpes": ["cpe:2.3:a:codesys:control_for_iot2000_sl:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "4.12.0.0", "versionType": "custom"}]}, {"vendor": "codesys", "product": "control_for_linux_arm_sl", "cpes": ["cpe:2.3:a:codesys:control_for_linux_arm_sl:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "4.12.0.0", "versionType": "custom"}]}, {"vendor": "codesys", "product": "control_for_linux_sl", "cpes": ["cpe:2.3:a:codesys:control_for_linux_sl:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "4.12.0.0", "versionType": "custom"}]}, {"vendor": "codesys", "product": "control_for_pfc200_sl", "cpes": ["cpe:2.3:a:codesys:control_for_pfc200_sl:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "4.12.0.0", "versionType": "custom"}]}, {"vendor": "codesys", "product": "control_for_plcnext_sl", "cpes": ["cpe:2.3:a:codesys:control_for_plcnext_sl:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "4.12.0.0", "versionType": "custom"}]}, {"vendor": "codesys", "product": "control_for_raspberry_pi_sl", "cpes": ["cpe:2.3:a:codesys:control_for_raspberry_pi_sl:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "4.12.0.0", "versionType": "custom"}]}, {"vendor": "codesys", "product": "control_for_wago_touch_panels_600_sl", "cpes": ["cpe:2.3:a:codesys:control_for_wago_touch_panels_600_sl:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "4.12.0.0", "versionType": "custom"}]}, {"vendor": "codesys", "product": "control_rte_\\(for_beckhoff_cx\\)_sl", "cpes": ["cpe:2.3:a:codesys:control_rte_\\(for_beckhoff_cx\\)_sl:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "3.5.20.10", "versionType": "custom"}]}, {"vendor": "codesys", "product": "control_rte_\\(sl\\)", "cpes": ["cpe:2.3:a:codesys:control_rte_\\(sl\\):*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "3.5.20.10", "versionType": "custom"}]}, {"vendor": "codesys", "product": "control_win_\\(sl\\)", "cpes": ["cpe:2.3:a:codesys:control_win_\\(sl\\):*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "3.5.20.10", "versionType": "custom"}]}, {"vendor": "codesys", "product": "runtime_toolkit", "cpes": ["cpe:2.3:a:codesys:runtime_toolkit:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "3.5.20.10", "versionType": "custom"}]}, {"vendor": "codesys", "product": "hmi_\\(sl\\)", "cpes": ["cpe:2.3:a:codesys:hmi_\\(sl\\):*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "3.5.20.10", "versionType": "custom"}]}], "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-06-06T14:26:44.507505Z", "id": "CVE-2024-5000", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-06-06T14:44:44.216Z"}}, {"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-01T20:55:10.389Z"}, "title": "CVE Program Container", "references": [{"url": "https://cert.vde.com/en/advisories/VDE-2024-026", "tags": ["x_transferred"]}, {"url": "https://customers.codesys.com/index.php?eID=dumpFile&t=f&f=18355&token=e3e5a937ce72602bec39718ddc2f4ba6d983ccd1&download=", "tags": ["x_transferred"]}]}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://cert.vde.com/en/advisories/VDE-2024-026", "tags": ["x_transferred"]}, {"url": "https://customers.codesys.com/index.php?eID=dumpFile&t=f&f=18355&token=e3e5a937ce72602bec39718ddc2f4ba6d983ccd1&download=", "tags": ["x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-01T20:55:10.389Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-5000", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-06-06T14:26:44.507505Z"}}}], "affected": [{"cpes": ["cpe:2.3:a:codesys:control_for_empc-a\\/imx6_sl:*:*:*:*:*:*:*:*"], "vendor": "codesys", "product": "control_for_empc-a\\/imx6_sl", "versions": [{"status": "affected", "version": "0", "lessThan": "4.12.0.0", "versionType": "custom"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:a:codesys:control_for_beaglebone_sl:*:*:*:*:*:*:*:*"], "vendor": "codesys", "product": "control_for_beaglebone_sl", "versions": [{"status": "affected", "version": "0", "lessThan": "4.12.0.0", "versionType": "custom"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:a:codesys:control_for_iot2000_sl:*:*:*:*:*:*:*:*"], "vendor": "codesys", "product": "control_for_iot2000_sl", "versions": [{"status": "affected", "version": "0", "lessThan": "4.12.0.0", "versionType": "custom"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:a:codesys:control_for_linux_arm_sl:*:*:*:*:*:*:*:*"], "vendor": "codesys", "product": "control_for_linux_arm_sl", "versions": [{"status": "affected", "version": "0", "lessThan": "4.12.0.0", "versionType": "custom"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:a:codesys:control_for_linux_sl:*:*:*:*:*:*:*:*"], "vendor": "codesys", "product": "control_for_linux_sl", "versions": [{"status": "affected", "version": "0", "lessThan": "4.12.0.0", "versionType": "custom"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:a:codesys:control_for_pfc200_sl:*:*:*:*:*:*:*:*"], "vendor": "codesys", "product": "control_for_pfc200_sl", "versions": [{"status": "affected", "version": "0", "lessThan": "4.12.0.0", "versionType": "custom"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:a:codesys:control_for_plcnext_sl:*:*:*:*:*:*:*:*"], "vendor": "codesys", "product": "control_for_plcnext_sl", "versions": [{"status": "affected", "version": "0", "lessThan": "4.12.0.0", "versionType": "custom"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:a:codesys:control_for_raspberry_pi_sl:*:*:*:*:*:*:*:*"], "vendor": "codesys", "product": "control_for_raspberry_pi_sl", "versions": [{"status": "affected", "version": "0", "lessThan": "4.12.0.0", "versionType": "custom"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:a:codesys:control_for_wago_touch_panels_600_sl:*:*:*:*:*:*:*:*"], "vendor": "codesys", "product": "control_for_wago_touch_panels_600_sl", "versions": [{"status": "affected", "version": "0", "lessThan": "4.12.0.0", "versionType": "custom"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:a:codesys:control_rte_\\(for_beckhoff_cx\\)_sl:*:*:*:*:*:*:*:*"], "vendor": "codesys", "product": "control_rte_\\(for_beckhoff_cx\\)_sl", "versions": [{"status": "affected", "version": "0", "lessThan": "3.5.20.10", "versionType": "custom"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:a:codesys:control_rte_\\(sl\\):*:*:*:*:*:*:*:*"], "vendor": "codesys", "product": "control_rte_\\(sl\\)", "versions": [{"status": "affected", "version": "0", "lessThan": "3.5.20.10", "versionType": "custom"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:a:codesys:control_win_\\(sl\\):*:*:*:*:*:*:*:*"], "vendor": "codesys", "product": "control_win_\\(sl\\)", "versions": [{"status": "affected", "version": "0", "lessThan": "3.5.20.10", "versionType": "custom"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:a:codesys:runtime_toolkit:*:*:*:*:*:*:*:*"], "vendor": "codesys", "product": "runtime_toolkit", "versions": [{"status": "affected", "version": "0", "lessThan": "3.5.20.10", "versionType": "custom"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:a:codesys:hmi_\\(sl\\):*:*:*:*:*:*:*:*"], "vendor": "codesys", "product": "hmi_\\(sl\\)", "versions": [{"status": "affected", "version": "0", "lessThan": "3.5.20.10", "versionType": "custom"}], "defaultStatus": "unknown"}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-06-06T14:44:38.104Z"}}], "cna": {"title": "CODESYS: Incorrect calculation of buffer size can cause DoS on CODESYS OPC UA products", "source": {"defect": ["CERT@VDE#641630"], "advisory": "VDE-2024-026", "discovery": "UNKNOWN"}, "credits": [{"lang": "en", "type": "reporter", "user": "00000000-0000-4000-9000-000000000000", "value": "ABB Schweiz AG."}], "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "CODESYS", "product": "CODESYS Control for BeagleBone SL", "versions": [{"status": "affected", "version": "0", "lessThan": "4.12.0.0", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "CODESYS", "product": "CODESYS Control for emPC-A/iMX6 SL", "versions": [{"status": "affected", "version": "0", "lessThan": "4.12.0.0", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "CODESYS", "product": "CODESYS Control for IOT2000 SL", "versions": [{"status": "affected", "version": "0", "lessThan": "4.12.0.0", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "CODESYS", "product": "CODESYS Control for Linux ARM SL", "versions": [{"status": "affected", "version": "0", "lessThan": "4.12.0.0", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "CODESYS", "product": "CODESYS Control for Linux SL", "versions": [{"status": "affected", "version": "0", "lessThan": "4.12.0.0", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "CODESYS", "product": "CODESYS Control for PFC100 SL", "versions": [{"status": "affected", "version": "0", "lessThan": "4.12.0.0", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "CODESYS", "product": "CODESYS Control for PFC200 SL", "versions": [{"status": "affected", "version": "0", "lessThan": "4.12.0.0", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "CODESYS", "product": "CODESYS Control for PLCnext SL", "versions": [{"status": "affected", "version": "0", "lessThan": "4.12.0.0", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "CODESYS", "product": "CODESYS Control for Raspberry Pi SL", "versions": [{"status": "affected", "version": "0", "lessThan": "4.12.0.0", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "CODESYS", "product": "CODESYS Control for WAGO Touch Panels 600 SL", "versions": [{"status": "affected", "version": "0", "lessThan": "4.12.0.0", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "CODESYS", "product": "CODESYS Control RTE (for Beckhoff CX) SL", "versions": [{"status": "affected", "version": "0", "lessThan": "3.5.20.10", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "CODESYS", "product": "CODESYS Control RTE (SL)", "versions": [{"status": "affected", "version": "0", "lessThan": "3.5.20.10", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "CODESYS", "product": "CODESYS Runtime Toolkit", "versions": [{"status": "affected", "version": "0", "lessThan": "3.5.20.10", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "CODESYS", "product": "CODESYS Control Win (SL)", "versions": [{"status": "affected", "version": "0", "lessThan": "3.5.20.10", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "CODESYS", "product": "CODESYS HMI (SL)", "versions": [{"status": "affected", "version": "0", "lessThan": "3.5.20.10", "versionType": "semver"}], "defaultStatus": "unaffected"}], "references": [{"url": "https://cert.vde.com/en/advisories/VDE-2024-026"}, {"url": "https://customers.codesys.com/index.php?eID=dumpFile&t=f&f=18355&token=e3e5a937ce72602bec39718ddc2f4ba6d983ccd1&download="}], "x_generator": {"engine": "Vulnogram 0.1.0-dev"}, "descriptions": [{"lang": "en", "value": "An unauthenticated remote attacker can use a\u00a0malicious OPC UA client to send a crafted request to affected CODESYS products which can cause a DoS due to incorrect calculation of buffer size.\n\n", "supportingMedia": [{"type": "text/html", "value": "An unauthenticated remote attacker can use a malicious OPC UA client to send a crafted request to affected CODESYS products which can cause a DoS due to incorrect calculation of buffer size.<br><br>", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-131", "description": "CWE-131 Incorrect Calculation of Buffer Size"}]}], "providerMetadata": {"orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c", "shortName": "CERTVDE", "dateUpdated": "2024-06-04T08:54:06.522Z"}}}, "cveMetadata": {"cveId": "CVE-2024-5000", "state": "PUBLISHED", "dateUpdated": "2024-08-01T20:55:10.389Z", "dateReserved": "2024-05-16T12:09:56.937Z", "assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c", "datePublished": "2024-06-04T08:54:06.522Z", "assignerShortName": "CERTVDE"}, "dataVersion": "5.1"}