Advisories

Filter anzeigen filter

Hersteller

Bewertung

Für CVSS 2.0, 3.0 und 3.2

Kein CVE verfügbar

0.1 - 3.9

4 - 6.9

7 - 8.9

9 - 10

VDE-2022-013

Mai 14, 2025, 3:00 nachm.

PHOENIX CONTACT: Multiple products affected by possible infinite loop within OpenSSL library

FL MGUARD and TC MGUARD devices are affected by a possible infinite loop within a OpenSSL library method for parsing elliptic curve parameters. This method is used on parsing cryptographic …

CVE-2022-0778

VDE-2022-010

Mai 22, 2025, 3:03 nachm.

PHOENIX CONTACT: Multiple Linux component vulnerabilities fixed in latest AXC F x152 LTS release

PLCnext Control AXC F x152 is certified according to IEC 62443-4-1 and IEC 62443-4-2. This certification requires that all third-party components used in the firmware are regularly checked for known …

CVE-2021-20232

CVE-2021-20231

CVE-2021-3711

CVE-2022-23852

CVE-2022-22822

CVE-2022-22823

CVE-2022-22824

CVE-2021-35942

CVE-2021-45079

CVE-2022-22827

CVE-2021-3518

CVE-2021-45960

CVE-2022-22825

CVE-2022-22826

CVE-2021-3517

CVE-2020-10878

CVE-2020-10543

CVE-2018-1000500

CVE-2019-17498

CVE-2020-6096

CVE-2021-20305

CVE-2020-8177

CVE-2021-46143

CVE-2019-18276

CVE-2021-23017

CVE-2021-21300

CVE-2021-22926

CVE-2020-8169

CVE-2021-22946

CVE-2019-20907

CVE-2021-43618

CVE-2020-12723

CVE-2020-24659

CVE-2021-40330

CVE-2021-3580

CVE-2021-41990

CVE-2022-23990

CVE-2020-15078

CVE-2021-3712

CVE-2021-42380

CVE-2021-42382

CVE-2021-42378

CVE-2021-42384

CVE-2021-42379

CVE-2021-42381

CVE-2021-42386

CVE-2021-42385

CVE-2021-22922

CVE-2019-20892

CVE-2021-45117

CVE-2021-22947

CVE-2021-3537

CVE-2021-22923

CVE-2021-22925

CVE-2021-22897

CVE-2016-20012

CVE-2021-42374

CVE-2020-29562

CVE-2021-20193

CVE-2021-22898

VDE-2022-008

April 7, 2022, 8:00 vorm.

WEIDMUELLER: Multiple vulnerabilities in Modbus TCP/RTU Gateways

Multiple issues have been found in the affected products. See CVE descriptions for details.

CVE-2019-9099

CVE-2019-9095

CVE-2019-9096

CVE-2019-9102

CVE-2019-9098

CVE-2019-9101

CVE-2019-9104

CVE-2019-9103

CVE-2019-9097

VDE-2022-009

Mai 22, 2025, 3:03 nachm.

WAGO: Multiple Products affected by Linux Kernel Vulnerability Dirty Pipe

The Linux kernel starting from 5.8 has a flaw which can lead to privilege escalation for a local user. The kernel is used in several Versions of the FW of …

CVE-2022-0847

VDE-2022-005

Mai 22, 2025, 3:03 nachm.

PHOENIX CONTACT: Vulnerabilities in XML parser library Expat (libexpat)

Several vulnerabilities have been discovered in the Expat XML parser library (aka libexpat).This open-source component is widely used in a lot of products worldwide.A remote, anonymous attacker could use an …

CVE-2022-23852

CVE-2022-22822

CVE-2022-22823

CVE-2022-22824

CVE-2022-25315

CVE-2022-25236

CVE-2022-25235

CVE-2022-22827

CVE-2021-45960

CVE-2022-22825

CVE-2022-22826

CVE-2021-46143

CVE-2022-23990

CVE-2022-25314

CVE-2022-25313

VDE-2022-006

März 24, 2022, 11:48 vorm.

Endress+Hauser: FieldPort SFP50 Memory Corruption in Bluetooth Controller Firmware

Possible memory corruption in BT controller when it receives an oversized LMP packet over 2-DH1 link and leads to denial of service.

CVE-2021-35093

VDE-2022-007

Mai 22, 2025, 3:03 nachm.

PHOENIX CONTACT: Path Traversal in Library of PLCnext Technology Toolchain and FL Network Manager

SharpZipLib (or #ziplib) is a Zip, GZip, Tar and BZip2 library. Prior to version 1.3.3, a TAR file entry ../evil.txt may be extracted in the parent directory of destFolder. This …

CVE-2021-32840

CVE-2021-32842

VDE-2022-004

März 9, 2022, 8:00 vorm.

WAGO: Web-Based Management Cross-Site Scripting

The Web-Based Management (WBM) of WAGOs programmable logic controller (PLC) is typically used for administration, commissioning and updates.Various configuration pages of the device are vulnerable to reflected XSS (Cross-Site Scripting) …

CVE-2022-22511