VDE-2021-020
Mai 14, 2025, 2:28 nachm.
Manipulated PC Worx or Config+ projects could lead to a remote code execution when unallocated memory is freed because of incompletely initialized data (CWE-824). The attacker needs to get access …
VDE-2020-020
Mai 14, 2025, 2:28 nachm.
WAGO PLCs uses Linux as operating system and offers the ambitious user the opportunity to make their own modifications to expand the functionality of the PLC. For this reason the …
VDE-2020-041
Mai 14, 2025, 2:28 nachm.
WIBU-SYSTEMS report multiple vulnerabilities in their CodeMeter Runtime software. As part of the Weidmüller u-create studio installation the WIBU-SYSTEMS CodeMeter is installed by default. As the u-create studio installation bundle …
VDE-2019-007
Mai 14, 2025, 2:28 nachm.
A WebHMI utility may be exploited by any logged in user allowing the execution of arbitrary OS commands on the server. This provides the opportunity for a command injection attack.
VDE-2024-063
Mai 14, 2025, 2:28 nachm.
The affected devices run a SSH server that is affected by the regreSSHion vulnerability despite the fact that no user can actually log in through SSH. Attackers may exploit this …
VDE-2021-016
Mai 14, 2025, 2:28 nachm.
A network port intended only for device-internal usage is accidentally accessible via external network interfaces.
VDE-2025-024
Mai 13, 2025, 12:00 nachm.
Multiple W&T devices are shipped with a jQuery version with a known XSS vulnerability.
VDE-2023-036
Mai 13, 2025, 12:00 nachm.
A vulnerability in the Wibu CodeMeter Runtime, which is part of the installation packages of several Festo products, was found. An attacker exploiting the vulnerability in WIBU CodeMeter Runtime in …