CVE-2026-8046 | CODESYS Control RTE 3.5.22.0 User Account authorization (VDE-2026-056)

May 26, 2026 Yanac

A vulnerability has been found in CODESYS Control RTE, Control RTE SL, Control Win, HMI, Runtime Toolkit, Control for BeagleBone SL, Control for emPC-A, iMX6 SL, Control for IOT2000 SL, Control for Linux ARM SL, Control for Linux SL, Control for PFC100 SL, Control for PFC200 SL, Control for PLCnext SL, Control for Raspberry Pi SL, Control for WAGO Touch Panels 600 SL and Virtual Control SL 3.5.22.0 and classified as problematic. The affected element is an unknown function of the component User Account Handler. Performing a manipulation results in incorrect authorization.

This vulnerability was named CVE-2026-8046. The attack may be initiated remotely. There is no available exploit.

The affected component should be upgraded.VulDB Recent EntriesRead More