CVE-2026-3509

HIGH NVD

CVSS Score 7.5

Severity HIGH

Published Mar 24, 2026

Vendor unknown

Description

An unauthenticated remote attacker may be able to control the format string of messages processed by the Audit Log of the CODESYS Control runtime system, potentially resulting in a denial‑of‑service (DoS) condition.

References

https://certvde.com/de/advisories/VDE-2026-018