Security Advisory

CVE-2026-2364

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-03-10 07:22:42

Last updated 2026-03-10 16:51:59

Assigner CERTVDE

State PUBLISHED

Description

If a legitimate user confirms a self-update prompt or initiate an installation of a CODESYS Development System, a low privileged local attacker can gain elevated rights due to a TOCTOU vulnerability in the CODESYS installer.

← Browse all CVEs View on cve.org ↗