VDE-2021-013
May 14, 2025, 2:28 PM
The Web-Based Management (WBM) of WAGOs industrial managed switches is typically used for administration, commissioning and updates. The reported vulnerabilities allow an attacker with access to the device and the …
VDE-2021-029
May 14, 2025, 2:28 PM
A device on the same network as the controller sending a special crafted JSON request to the /auth/access-token endpoint may cause the controller to restart (CWE-20). UPDATE A The CVSS …
VDE-2021-012
May 14, 2025, 2:28 PM
Multiple issues have been identified in dnsmasq < 2.83
VDE-2021-024
May 14, 2025, 2:28 PM
The vulnerability is a Time-of-Check-Time-of-Use (CWE-367) issue which allows an attacker with access to the firmware update file to overwrite it after it has been verified (but before installation is …
VDE-2020-024
May 14, 2025, 2:28 PM
For process data documentation purposes the laboratory washers, thermal disinfectors and washer-disinfectors can be integrated in a TCP/IP network by utilizing the affected communication module. The communication module is separate …
VDE-2020-032
May 14, 2025, 2:28 PM
Multiple vulnerabilties were reported in WIBU-SYSTEMS Codemeter. WIBU-SYSTEMS Codemeter is installed by default during e!COCKPIT installation. All currently existing e!COCKPIT installation bundles contain vulnerable versions of WIBU-SYSTEMS Codemeter.
VDE-2020-027
May 14, 2025, 2:28 PM
The Web-Based Management (WBM) of WAGOs programmable logic controller (PLC) is typically used for administration, commissioning and updates. With special crafted requests it is possible to change some special parameters …
VDE-2021-031
May 14, 2025, 2:28 PM
Two vulnerabilities in mbCONNECT24 and mymbCONNECT24 can lead to information disclosure and arbitrary code execution. Please consult the CVE entries for details.