Description

If a legitimate user confirms a self-update prompt or initiate an installation of a CODESYS Development System, a low privileged local attacker can gain elevated rights due to a TOCTOU vulnerability in the CODESYS installer.

INFO

Published Date :

2026-03-10T07:22:42.658Z

Last Modified :

2026-03-10T07:22:42.658Z

Source :

CERTVDE
AFFECTED PRODUCTS

The following products are affected by CVE-2026-2364 vulnerability.

No data.

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-2364.

URL Resource
https://certvde.com/de/advisories/VDE-2026-012 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact