CVE-2022-1989

Summary

All CODESYS Visualization versions before V4.2.0.0 generate a login dialog vulnerable to information exposure allowing a remote, unauthenticated attacker to enumerate valid users.

Affected Software

VendorProductVersion RangeStatus
CODESYSCODESYS VisualizationV3 < V4.2.0.0affected

Weaknesses

  • CWE-204: CWE-204 Response Discrepancy Information Exposure

ADP Enrichment

CVE Program Container

Additional References

References