cve/2024/CVE-2024-41969.md

### [CVE-2024-41969](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41969)
![](https://img.shields.io/static/v1?label=Product&message=CC100%200751-9x01&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=Edge%20Controller%200752-8303%2F8000-0002&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=PFC100%20G1%200750-810x%2Fxxxx-xxxx&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=PFC100%20G2%200750-811x-xxxx-xxxx&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=PFC200%20G1%20750-820x-xxx-xxx&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=PFC200%20G2%20750-821x-xxx-xxx&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=TP600%200762-420x%2F8000-000x&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=TP600%200762-430x%2F8000-000x&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=TP600%200762-520x%2F8000-000x&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=TP600%200762-530x%2F8000-000x&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=TP600%200762-620x%2F8000-000x&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=TP600%200762-630x%2F8000-000x&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=0.0.0%3C%203.10.11%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Version&message=0.0.0%3C%3D%204.5.10%20(FW27)%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-306%20Missing%20Authentication%20for%20Critical%20Function&color=brighgreen)

### Description

A low privileged remote attacker may modify the configuration of the CODESYS V3 service through a missing authentication vulnerability which could lead to full system access and/or DoS.

### POC

#### Reference
- https://cert.vde.com/en/advisories/VDE-2024-047

#### Github
No PoCs found on GitHub currently.