VDE-2023-006
Juli 8, 2024, 12:00 nachm.
An authenticated attacker can send a malformed packet to trigger a device crash via the CODESYS V2 runtime commands parsing. Update: 08.07.2024 release date of the updates has been changed.
VDE-2023-005
Juni 25, 2023, 8:00 vorm.
An unauthenticated attacker with network access to port 502/TCP of the target device can cause a denial-of-service condition by sending multiple specially crafted packets. The MODBUS server does not properly …
VDE-2023-010
Mai 14, 2025, 3:00 nachm.
The FL MGUARD family of devices is affected by two vulnerabilities.
VDE-2023-002
Mai 14, 2025, 3:00 nachm.
Two vulnerabilites have been discovered in mbCONNECT24 and mbCONNECT24 in all versions through 2.13.3.
VDE-2023-008
Mai 15, 2023, 2:06 nachm.
Two vulnerabilites have been discovered in myREX24 and myREX24.virtual in all versions through 2.13.3.
VDE-2023-007
Mai 22, 2025, 3:03 nachm.
The 'legal information' plugin of web-based-management contained a vulnerability which allowed execution of arbitrary commands with privileges of www user. UPDATE A 15.06.2023 : Removed PFC100 with FW23 as affected …
VDE-2023-009
Mai 8, 2023, 3:37 nachm.
ads-tec: Multiple Vulnerabilities in IRF1000, IRF2000 and IRF3000
VDE-2023-004
April 11, 2023, 10:00 vorm.
A Directory Traversal Vulnerability enables arbitrary file access in ENERGY AXC PU Web service.An authenticated restricted user of the web frontend can access, read, write and create files throughout the …