Advisories

Filter anzeigen filter

Hersteller

Bewertung

Für CVSS 2.0, 3.0 und 3.2

Kein CVE verfügbar

0.1 - 3.9

4 - 6.9

7 - 8.9

9 - 10

VDE-2019-015

Juli 11, 2025, 9:00 vorm.

PHOENIX CONTACT: Security Advisory for multiple Industrial Controllers

Phoenix Contact Classic Line industrial controllers (ILC1x0 and ILC1x1 product families as well as the AXIOLINE controllers AXC1050 and AXC3050) are developed and designed for the use in closed industrial …

CVE-2019-9201

VDE-2022-027

Juli 10, 2025, 12:00 nachm.

Festo: Controller CECC-S,LK,D family firmware 2.4.2.0 - multiple vulnerabilities in CODESYS V3 runtime system

The Festo controller CECC product family in firmware version 2.4.2.0 is affected by multiple vulnerabilities in the CODESYS V3 runtime.

CVE-2020-10245

CVE-2021-33485

CVE-2019-9013

CVE-2022-22515

CVE-2020-12069

CVE-2022-22517

CVE-2021-36764

CVE-2020-12067

CVE-2020-15806

CVE-2021-36763

CVE-2022-22519

CVE-2021-29241

CVE-2019-5105

CVE-2021-29242

CVE-2022-22514

CVE-2022-22513

CVE-2020-12068

CVE-2019-9011

VDE-2025-053

Juli 8, 2025, 12:00 nachm.

Phoenix Contact: Multiple Vulnerabilities in PLCnext Firmware

Multiple Linux component vulnerabilities fixed in latest PLCnext Firmware release 2025.0.2

CVE-2024-12084

CVE-2024-10918

CVE-2024-52533

CVE-2025-0665

CVE-2024-38428

CVE-2024-5594

CVE-2024-5535

CVE-2024-6345

CVE-2025-24965

CVE-2024-9341

CVE-2018-1000035

CVE-2024-9287

CVE-2018-20969

CVE-2018-1000156

CVE-2019-13638

CVE-2024-12085

CVE-2024-6232

CVE-2018-6952

CVE-2018-6951

CVE-2024-6119

CVE-2024-25062

CVE-2025-27113

CVE-2024-8176

CVE-2024-12705

CVE-2025-26465

CVE-2024-10524

CVE-2024-12088

CVE-2024-12087

CVE-2024-9681

CVE-2024-12086

CVE-2019-13636

CVE-2025-26466

CVE-2024-50602

CVE-2024-12747

CVE-2018-18384

CVE-2022-0529

CVE-2022-0530

CVE-2019-20633

CVE-2024-0684

CVE-2023-27043

CVE-2024-12133

CVE-2020-16120

CVE-2024-5742

CVE-2024-8006

CVE-2023-7256

CVE-2024-28882

CVE-2024-9143

CVE-2016-9844

CVE-2024-11053

CVE-2025-0167

CVE-2019-13232

CVE-2021-4217

CVE-2015-7697

CVE-2015-7696

VDE-2025-054

Juli 8, 2025, 12:00 nachm.

Phoenix Contact: Multiple Vulnerabilities in PLCnext Firmware

Multiple vulnerabilities in the PLCnext system allowed low-privileged remote attackers to gain unauthorized access or trigger system reboots by manipulating configuration files and symbolic links. Affected services include watchdog, arp-preinit, …

CVE-2025-41668

CVE-2025-41667

CVE-2025-41666

CVE-2025-41665

VDE-2025-014

Juli 8, 2025, 12:00 nachm.

Phoenix Contact: Security Advisory for CHARX SEC-3xxx charging controllers

Multiple vulnerabilities in the firmware of CHARX SEC-3xxx charging controllers have been discovered.

CVE-2025-24003

CVE-2025-24006

CVE-2025-24005

CVE-2025-24002

CVE-2025-24004

VDE-2025-057

Juli 7, 2025, 8:15 vorm.

WAGO: Vulnerability in WAGO Device Sphere

During installation, identical certificates are installed across all systems instead of unique ones, which are intended for JWT Token encryption and signing.

CVE-2025-41672

VDE-2025-018

Juli 4, 2025, 12:00 nachm.

WAGO: Vulnerabilities in WAGO Device Manager

Vulnerabilities have been discovered in the WAGO Device Manager that allow any origin to access the server and set header values, as well as an endpoint that permits read access …

CVE-2025-25264

CVE-2025-25265

VDE-2025-045

Juli 1, 2025, 12:00 nachm.

Pilz: Missing Authentication in Node-RED integration

Authentication is not configured by default for the Node-RED server on the Pilz industrial PC IndustrialPI. An unauthenticated remote attacker has full access to the Node-RED server and can run …

CVE-2025-41656