CVE-2025-41738 | CODESYS Control RTE type confusion (VDE-2025-100 / EUVD-2025-199975)

A vulnerability marked as critical has been reported in CODESYS Control RTE, Control RTE SL, Control Win, HMI, Remote Target Visu, Runtime Toolkit, Control for BeagleBone SL, Control for emPC-A, iMX6 SL, Control for IOT2000 SL, Control for Linux ARM SL, Control for Linux SL, Control for PFC100 SL, Control for PFC200 SL, Control for PLCnext SL, Control for Raspberry Pi SL, Control for WAGO Touch Panels 600 SL and Virtual Control SL. This affects an unknown part. This manipulation causes type confusion.

This vulnerability is handled as CVE-2025-41738. The attack can be initiated remotely. There is not any exploit available.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More