Portsuppe

OpenPLC v3

CISA Cybersecurity Advisories·8h·Official

View CSAF Summary Successful exploitation of this vulnerability could allow an authenticated attacker to write arbitrary files to the filesystem and escalate this into arbitrary native code execution through the normal OpenPLC program compilation process, potentially resulting in code execution as the OpenPLC runtime user. The following versions of OpenPLC v3 are affected: OpenPLC v3 CVSS Vendor Equipment Vulnerabilities v3 9.9 OpenPLC OpenPLC v3 External Control of File Name or Path Background Critical Infrastructure Sectors: Critical Manufacturing, Energy, Transportation Systems, Water and W

Categories cybersecurity · government-security · privacy · vulnerability
Original source / advisory
Published
7/9/2026, 12:00:00 PM
Fetched
7/9/2026, 6:19:04 PM
Trust
official · 100/100
Language
en