๐Ÿ” CVE Alert

CVE-2026-35227

UNKNOWN 0.0

Improper resource management in CODESYS Modbus TCP Server

CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th

An unauthenticated remote attacker may exhaust all available TCP connections in the CODESYS Modbus TCP Server stack if a race condition in connection handling is successfully exploited, preventing legitimate clients from establishing new connections.

CWE CWE-772
Vendor codesys
Product codesys modbus
Published May 12, 2026
Last Updated May 13, 2026
Stay Ahead of the Next One

Get instant alerts for codesys codesys modbus

Be the first to know when new unknown vulnerabilities affecting codesys codesys modbus are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

Affected Versions

CODESYS / CODESYS Modbus
1.0.0.0 < 4.6.0.0

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
certvde.com: https://certvde.com/de/advisories/VDE-2026-042

Credits

ABB Schweiz AG