VDE-2020-049
Dez. 17, 2020, 10:00 vorm.
Multiple vulnerabilities have been identified in PLCnext Control devices. Please consult the aforementioned CVE-IDs.
VDE-2020-047
Mai 14, 2025, 2:28 nachm.
Uncontrolled Resource Consumption can be exploited to cause the HMI to become unresponsive and not accurately update the display content (Denial of Service).
VDE-2020-022
Mai 14, 2025, 3:00 nachm.
The firmware release has a dynamic token for each request submitted to the server, which makes repeating requests and analysis complex enough. Nevertheless, it's possible and during the analysis it …
VDE-2020-021
April 11, 2025, 9:00 vorm.
The affected device has a web-based user interface with a role-based access system. Users with different roles have different write and read privileges. The access system is based on dynamic …
VDE-2020-037
Mai 22, 2025, 3:03 nachm.
The default installation path and its permissions for the TwinCAT runtime allow a local user to replace or modify executables other users of the same system might execute. The issue …
VDE-2020-031
Mai 14, 2025, 3:00 nachm.
For further Information please refer to WIBU Advisories directly at https://wibu.com/support/security-advisories.html and the aforementioned CVE-IDs.
VDE-2020-042
Mai 14, 2025, 3:00 nachm.
The Web-Based Management (WBM) of WAGOs programmable logic controller (PLC) is typically used for administration, commissioning and updates. Older firmware versions of the PLC family 750-88x and 750-352 are vulnerable …
VDE-2020-039
Mai 14, 2025, 2:36 nachm.
A number of TRUMPF CAD/CAM software tools use the CodeMeter Runtime application from WIBU-SYSTEMS AG to manage licences. This application contains a number of vulnerabilities, which enable an attacker to …