What is CVE-2021-30190?

CODESYS V2 Web-Server is affected by a critical vulnerability due to improper access control. Organizations should prioritize patching to mitigate risks associated with potential exploitation.

What is the severity of CVE-2021-30190?

CVE-2021-30190 has a severity rating of CRITICAL with a CVSS base score of 9.8.

CVE-2021-30190 | Critical Vulnerability in CODESYS V2 Web-Server

CODESYS V2 Web-Server before version 1.1.9.20 has an improper access control vulnerability. This vulnerability allows attackers to exploit systems without requiring any privileges. With a CVSS score of 9.8, it is classified as critical, indicating the severity of the potential impact on affected systems.

Risk to organizations includes unauthorized access to sensitive information and disruption of service. The vulnerability is network-exploitable with low complexity, making it an attractive target for attackers. Organizations should prioritize patching immediately.

As of now, there are no known exploits or public proof-of-concept code available for this vulnerability. However, the absence of such information does not diminish the urgency for remediation. Organizations must remain vigilant and proactive in their security measures.

Given the critical nature of this vulnerability, organizations are encouraged to implement immediate remediation actions to safeguard their systems against potential exploitation.

Vulnerability Details

The CODESYS V2 Web-Server before version 1.1.9.20 suffers from improper access control, which may lead to unauthorized access and data breaches. The vulnerability has been classified under CWE-306, highlighting issues related to permissions and access controls.

The CVSS 3.1 score of 9.8 indicates a critical severity level, with high impacts on confidentiality, integrity, and availability. The vulnerability is found in various versions of CODESYS components, including firmware for multiple WAGO products.

Technical Analysis

The root cause of this vulnerability lies in the system's access control mechanisms, which do not adequately restrict unauthorized users. The attack vector is network-based, allowing potential exploitation from remote locations without requiring user interaction.

With a low attack complexity and no privileges required, the vulnerability is particularly dangerous. Attackers may leverage this flaw to gain access to sensitive information, potentially compromising system integrity and availability.

Risk & Impact Analysis

The deployment risk associated with this vulnerability is significant, especially for organizations utilizing CODESYS in critical infrastructure. The potential for unauthorized access could lead to severe consequences, including data breaches and operational disruptions.

Organizations must recognize the urgency of addressing this vulnerability, particularly given its critical CVSS score. Immediate remediation actions are necessary to mitigate the risks and protect sensitive assets.

Signal	Status
Known Exploit	No
Public PoC	No
Actively Exploited	No
Ransomware Use	No

Affected Versions

All versions of CODESYS V2 Web-Server prior to 1.1.9.20 are affected by this vulnerability. This includes various WAGO firmware versions such as 750-8202 to 750-893.

Mitigation & Remediation

Organizations should prioritize patching to version 1.1.9.20 or later to remediate this vulnerability. If an immediate upgrade is not feasible, consider implementing network segmentation to limit access to affected systems.

Additional security measures include conducting regular security assessments and implementing robust access controls. Organizations can validate remediation effectiveness through application security assessments to ensure continued protection.

Detection Guidance

To detect potential exploitation attempts, organizations should monitor logs for unusual access patterns and unauthorized changes. Implementing behavioral analysis tools can also help identify anomalies that may indicate exploitation.

AppSecure Threat Intelligence Insight

The CODESYS V2 Web-Server vulnerability highlights ongoing risks associated with improper access controls in industrial systems. Security teams should consider this vulnerability as part of their broader threat landscape.

Organizations can benefit from developing a comprehensive understanding of their attack surface through initiatives like red teaming to identify and mitigate vulnerabilities effectively before they are exploited.

Further insights can be gained by reviewing vulnerability management programs and adapting defensive strategies based on emerging threat trends.

Organizations should also engage in regular penetration testing to assess their security posture and validate their defenses against potential exploitation.

Disclaimer: This content was generated using AI. While we strive for accuracy, please verify critical information with official sources.

CVE ID	Title	Severity	Vulnerability Type	Published
CVE-2025-65418	CVE-2025-65418: High Vulnerability in docuFORM Managed Print Service Client	HIGH	Path Traversal	May 11, 2026
CVE-2025-65417	CVE-2025-65417: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	XSS	May 11, 2026
CVE-2025-65416	CVE-2025-65416: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Unrestricted File Upload	May 11, 2026
CVE-2025-65415	CVE-2025-65415: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Session Fixation	May 11, 2026
CVE-2025-61314	CVE-2025-61314: High Vulnerability in GmbH Mecury Managed Print Services	HIGH	XSS	May 11, 2026

CVE-2021-30190: Critical Vulnerability in CODESYS V2 Web-Server