CVE-2026-35227

Vulnerability Description

An unauthenticated remote attacker may exhaust all available TCP connections in the CODESYS Modbus TCP Server stack if a race condition in connection handling is successfully exploited, preventing legitimate clients from establishing new connections.

Related Weaknesses (CWE)

CWE-772

References

https://certvde.com/de/advisories/VDE-2026-042

FAQ

What is CVE-2026-35227?

CVE-2026-35227 is a documented vulnerability. An unauthenticated remote attacker may exhaust all available TCP connections in the CODESYS Modbus TCP Server stack if a race condition in connection handling is successfully exploited, preventing leg...

How severe is CVE-2026-35227?

CVSS scoring is not yet available for CVE-2026-35227. Check NVD for updates.

Is there a patch for CVE-2026-35227?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.