VDE-2023-019
Aug. 3, 2023, 12:42 PM
CODESYS Control V3 runtime systems are affected by several security vulnerabilities in the communication server implementations for the CODESYS protocol. These may be exploited by authenticated attackers.
VDE-2023-014
July 31, 2023, 9:00 AM
A vulnerability allows Bluetooth LE pairing traffic to be sniffed and used to bypass authentication for pairing.
VDE-2023-024
July 28, 2023, 9:45 AM
In CODESYS Development System 3.5.9.0 to 3.5.17.0 and CODESYS Scripting 4.0.0.0 to 4.1.0.0 unsafe directory permissions would allow an attacker with local access to the workstation to place potentially harmful …
VDE-2023-011
July 5, 2023, 10:00 AM
Frauscher Diagnostic System FDS001 for FAdC R1 and FAdCi R1 v1.3.3 and all previous versions are vulnerable to a path traversal vulnerability of the web interface by a crafted URL …
VDE-2023-005
June 25, 2023, 8:00 AM
An unauthenticated attacker with network access to port 502/TCP of the target device can cause a denial-of-service condition by sending multiple specially crafted packets. The MODBUS server does not properly …
VDE-2023-008
May 15, 2023, 2:06 PM
Two vulnerabilites have been discovered in myREX24 and myREX24.virtual in all versions through 2.13.3.
VDE-2023-009
May 8, 2023, 3:37 PM
ads-tec: Multiple Vulnerabilities in IRF1000, IRF2000 and IRF3000
VDE-2023-004
April 11, 2023, 10:00 AM
A Directory Traversal Vulnerability enables arbitrary file access in ENERGY AXC PU Web service.An authenticated restricted user of the web frontend can access, read, write and create files throughout the …