If a legitimate user confirms a self-update prompt or initiate an installation of a CODESYS Development System, a low privileged local attacker can gain elevated rights due to a TOCTOU vulnerability in the CODESYS installer.CreditsDavid Ruscheweyh from SEW-EURODRIVE GmbH & Co KGReferenceshttps://certvde.com/de/advisories/VDE-2026-012
