VDE-2024-005
June 5, 2025, 3:28 PM
Under certain circumstances, opening a specially crafted 7-zip package can exploit an integer underflow vulnerability in 7-zip versions up to and including 22.x This vulnerability allows for a remote code …
VDE-2025-020
June 2, 2025, 8:00 AM
The Year 2038 Problem affects systems using a 32-bit integer to represent time as the number of seconds since January 1st, 1970. On January 19, 2038, at 03:14:07 UTC, the …
VDE-2025-042
May 27, 2025, 11:00 AM
The Lenze VPN client is vulnerable to a Local Privilege Escalation to root/SYSTEM by executing a configuration file which can be controlled by a non-privileged user. This occurs through a …
VDE-2023-067
May 22, 2025, 3:03 PM
With TwinCAT/BSD based products the HTTPS request to the Authelia login page accepts user-controlled input that specifies a link to an external site.
VDE-2023-026
May 22, 2025, 3:03 PM
Multiple WAGO devices are prone to vulnerabilites in the used CODESYS V3 framework.
VDE-2022-026
May 22, 2025, 3:03 PM
ProConOS/ProConOS eCLR insufficiently verifies uploaded data.
VDE-2022-051
May 22, 2025, 3:03 PM
A denial of service of the HTTPS management interface of PHOENIX CONTACT FL MGUARD and TC MGUARD devices can be triggered by a larger number of unauthenticated HTTPS connections originating …
VDE-2023-051
May 22, 2025, 3:03 PM
Increased Security attacks against OT infrastructure and research of Dragos makes it necessary to publish this advisory giving users hints according to basic security measures to support automation systems using …