VDE-2024-040
April 10, 2025, 3:00 PM
TruControl laser control software prior to version 1.60.0 uses an OpenSSH server version affected by CVE-2024-6387. The affected OpenSSH Server version could potentially lead to a remote code execution.
VDE-2023-050
April 10, 2025, 3:00 PM
Multiple Pilz products are affected by stored cross-site-scripting (XSS) vulnerabilities. The vulnerabilities may enable an attacker to gain full control over the system. Update: 27.02.2024 Fix typo in advisory title
VDE-2025-004
April 10, 2025, 3:00 PM
Nozomi Networks reported a vulnerability in the pfc firmware sdk-G2 of libwagosnmp. The WAGO pfc-firmware-sdk-G2 is a software development kit designed for WAGO PFC devices which allows developers to build …
VDE-2024-034
April 10, 2025, 3:00 PM
TruControl laser control software from versions 3.50.0 to 4.00.0.B use Linux kernel versions affected by CVE-2024-1086. The affected kernel vulnerability could lead to local privilege escalation.
VDE-2024-057
April 3, 2025, 12:00 PM
The CODESYS web server component of the CODESYS Control runtime system is used by the CODESYS WebVisu to display visualization screens in a web browser. Receiving a specifically crafted TLS …
VDE-2024-053
March 13, 2025, 12:30 PM
The following tools: * VisiWinNET Smart * VisiWinNET Professional * EASY UI Designer create a directory with insufficient permissions, allowing a low-level user the ability to add and modify certain …
VDE-2025-036
March 6, 2025, 3:00 PM
Several vulnerabilities in the Endress+Hauser MEAC300-FNADE4 were discovered, that can be accessed via Ethernet.
VDE-2025-023
March 5, 2025, 12:00 PM
Multiple Weidmueller products are affected by an OpenSSL vulnerability. Weidmüller has released new firmwares of the affected products to fix the vulnerability.