VDE-2021-020
May 14, 2025, 2:28 PM
Manipulated PC Worx or Config+ projects could lead to a remote code execution when unallocated memory is freed because of incompletely initialized data (CWE-824). The attacker needs to get access …
VDE-2020-020
May 14, 2025, 2:28 PM
WAGO PLCs uses Linux as operating system and offers the ambitious user the opportunity to make their own modifications to expand the functionality of the PLC. For this reason the …
VDE-2020-041
May 14, 2025, 2:28 PM
WIBU-SYSTEMS report multiple vulnerabilities in their CodeMeter Runtime software. As part of the Weidmüller u-create studio installation the WIBU-SYSTEMS CodeMeter is installed by default. As the u-create studio installation bundle …
VDE-2019-007
May 14, 2025, 2:28 PM
A WebHMI utility may be exploited by any logged in user allowing the execution of arbitrary OS commands on the server. This provides the opportunity for a command injection attack.
VDE-2024-063
May 14, 2025, 2:28 PM
The affected devices run a SSH server that is affected by the regreSSHion vulnerability despite the fact that no user can actually log in through SSH. Attackers may exploit this …
VDE-2021-016
May 14, 2025, 2:28 PM
A network port intended only for device-internal usage is accidentally accessible via external network interfaces.
VDE-2025-024
May 13, 2025, 12:00 PM
Multiple W&T devices are shipped with a jQuery version with a known XSS vulnerability.
VDE-2023-036
May 13, 2025, 12:00 PM
A vulnerability in the Wibu CodeMeter Runtime, which is part of the installation packages of several Festo products, was found. An attacker exploiting the vulnerability in WIBU CodeMeter Runtime in …