VDE-2022-028
Mai 14, 2025, 3:00 nachm.
PHOENIX CONTACT: Missing Authentication in ProConOS/ProConOS eCLR SDK and MULTIPROG Engineering tool
ProConOS/ProConOS eCLR designed for use in closed industrial networks provide communication protocols without authentication. Please also refer the original ICS-CERT advisory ICSA-15-013-03 published 13 January 2015.
VDE-2022-053
Mai 14, 2025, 3:00 nachm.
Two Vulnerabilities have been discovered in TC ROUTER 4000 series and CLOUD CLIENT 2000 series up to firmware version 4.5.7x.107. The web administration interface is vulnerable for authenticated admin users …
VDE-2022-013
Mai 14, 2025, 3:00 nachm.
FL MGUARD and TC MGUARD devices are affected by a possible infinite loop within a OpenSSL library method for parsing elliptic curve parameters. This method is used on parsing cryptographic …
VDE-2020-036
Mai 14, 2025, 3:00 nachm.
Multiple vulnerabilities in the WAGO I/O-Check Service were reported.
VDE-2022-029
Mai 14, 2025, 3:00 nachm.
The UWP 3.0 family of Monitoring Gateways and Controllers and the CPY Car Park Server are affected by multiple vulnerabilities in their set-up software, runtime firmware, embedded Web interface.
VDE-2021-057
Mai 14, 2025, 3:00 nachm.
Multiple Vulnerabilities in a software service of shDIALUP can lead to arbitrary code execution due to improper privilege management. Update A, 2022-03-28 Updated CVSS score from CVE-2021-33527 from 7.8 to …
VDE-2022-048
Mai 14, 2025, 3:00 nachm.
Manipulated PC Worx or Config+ files could lead to a heap buffer overflow, release of unallocated memory or a read access violation due to insufficient validation of input data.The attacker …
VDE-2019-012
Mai 14, 2025, 3:00 nachm.
A security researcher discovered that the affected application doesn't properly restrict access to an endpoint that is responsible for saving settings, to a user with limited access rights. Based on …