Security Advisory

CVE-2025-41739

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-12-01 10:00:44

Last updated 2026-01-07 17:09:52

Assigner CERTVDE

State PUBLISHED

Description

An unauthenticated remote attacker, who beats a race condition, can exploit a flaw in the communication servers of the CODESYS Control runtime system on Linux and QNX to trigger an out-of-bounds read via crafted socket communication, potentially causing a denial of service.

← Browse all CVEs View on cve.org ↗