VDE-2023-017
May 22, 2025, 3:03 PM
Two vulnerabilities have been discovered in the firmware of TC ROUTER and TC CLOUD CLIENT devices. Update A, 2024-08-12 Added a summary text Added details to impact
VDE-2021-049
May 22, 2025, 3:03 PM
A Denial-of-Service Vulnerability was reported in CODESYS 2.3 Runtime. The CODESYS 2.3 Runtime is an essential component in several WAGO PLC's. All vulnerable PLCs are listed in chapter 'Affected Products'.
VDE-2023-056
May 22, 2025, 3:03 PM
PLCnext Control provides authentication and integrity check for the application.An authenticated, skilled attacker might be able to manipulate the application (e.g.: logic files, executable logic, configurations) in a special crafted …
VDE-2021-008
May 22, 2025, 3:03 PM
The affected products can act as OPC UA client or server and are vulnerable to two different kind of attacks via the OPC UA protocol. For both cases the attacker …
VDE-2024-013
May 22, 2025, 3:03 PM
CVE-2024-24781: If the above mentioned products are loaded with Wire speed (1Gbit/s or 100Mbit/s) the resources of the Ethernet-Controller are exhausted and it must be reset by the system automatically …
VDE-2019-020
May 22, 2025, 3:03 PM
PHOENIX CONTACT: improper access control exists on FL NAT devices when using MAC-based port security
If MAC-based port security or 802.1x port security is enabled, the FL NAT 2xxx will unintentionally grant access to unauthorized devices in case of routed transmission. ''' Subnet 2---(Ports belonging …
VDE-2022-014
May 22, 2025, 3:03 PM
Apache HTTP Server 2.4.52 and earlier fails to close inbound connection when errors are encountered discarding the request body, exposing the server to HTTP Request Smuggling. For the mGuard Device …
VDE-2022-002
May 22, 2025, 3:03 PM
A vulnerability is reported in WIBU-SYSTEMS Codemeter. WIBU-SYSTEMS Codemeter is installed by default during e!COCKPIT and WAGO-I/O-Pro (CODESYS 2.3) installations. All currently existing e!COCKPIT installation bundles and WAGO-I/O-Pro (CODESYS 2.3) …