Vulnerability Description
An unauthenticated remote attacker is able to exhaust all available TCP connections in the CODESYS EtherNet/IP adapter stack, preventing legitimate clients from establishing new connections.
Related Weaknesses (CWE)
References
- https://codesys.csaf-tp.certvde.com/.well-known/csaf/white/2026/advisory2026-04_
- https://www.certvde.com/en/advisories/VDE-2026-040/
FAQ
What is CVE-2026-35225?
CVE-2026-35225 is a documented vulnerability. An unauthenticated remote attacker is able to exhaust all available TCP connections in the CODESYS EtherNet/IP adapter stack, preventing legitimate clients from establishing new connections.
How severe is CVE-2026-35225?
CVSS scoring is not yet available for CVE-2026-35225. Check NVD for updates.
Is there a patch for CVE-2026-35225?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.