Codesys announced patches for about a dozen vulnerabilities detected in the company’s products by researchers at NSFocus, a Chinese cybersecurity firm.
Some of the top Industrial Control System (ICS) manufacturers in the world employ the industrial automation software solutions that the German company offers, and flaws in Codesys products could affect a huge number of devices.
Numerous issues in Codesys V2 products were discovered by NSFocus researchers over the course of the past year, although some of them were consolidated into a single CVE identification, resulting in a total of 13 faults being given CVEs. Two of the CVEs were fixed by Codesys in October 2021, and 11 were patched with updates issued on June 23, 2022, according to Gao Jian, one of the NSFocus researchers working on this project.
