VDE-2024-066
Aug. 27, 2025, 12:00 nachm.
Multiple vulnerabilities have been discovered in REX100 allowing for RCE or unauthorized file access.
VDE-2024-010
Aug. 27, 2025, 12:00 nachm.
The data24 service that is bundled with every installation of mbCONNECT24/mymbCONNECT24 has two serious flaws in core components. These combined can lead to a complete loss of confidentiality, integrity and …
VDE-2025-044
Aug. 27, 2025, 12:00 nachm.
Weidmueller industrial ethernet switches are affected by multiple vulnerabilities. Weidmueller has released new firmwares of the affected products to fix the vulnerabilities.
VDE-2024-012
Aug. 27, 2025, 12:00 nachm.
In ifm Smart PLC firmware up to version 4.3.17 for Smart PLC controllers AC14xx and AC4xxS, an attacker can access the configuration by using the hardcoded credentials. The endpoint hosts …
VDE-2024-039
Aug. 27, 2025, 12:00 nachm.
Confidential data in HTTP query string of user requests. Incomplete sanitation of user input in administrative web interface.
VDE-2024-038
Aug. 27, 2025, 12:00 nachm.
Pepperl+Fuchs: Anonymous FTP server and Telnet access allows information disclosure and manipulation
Critical vulnerabilities has been discovered in the product, mainly caused by ananonymous FTP server and Telnet access.The impact of the vulnerabilities on the affected device may result in Information disclosure …
VDE-2024-022
Aug. 27, 2025, 12:00 nachm.
Start sequence for firewall service allows attack during the boot process. Password is reset to default when the device undergoes a firmware upgrade.
VDE-2025-066
Aug. 27, 2025, 10:00 vorm.
A security researcher discovered a Directory Traversal vulnerability in Sunny Boy 3, which allows remote attackers to access sensitive information. The vulnerability is already fixed since January 2021 with version …