CVE-2022-31802

Published: Jun 24, 2022
Updated: May 4, 2025
CVE: <a href="https://nvd.nist.gov/vuln/detail/CVE-2022-31802" target="_blank" rel="noopener"> CVE-2022-31802
Severity: High
Exploit:

In CODESYS Gateway Server V2 for versions prior to V2.3.9.38 only a part of the the specified password is been compared to the real CODESYS Gateway password. An attacker may perform authentication by specifying a small password that matches the corresponding part of the longer real CODESYS Gateway password.