VDE-2023-006
July 8, 2024, 12:00 PM
An authenticated attacker can send a malformed packet to trigger a device crash via the CODESYS V2 runtime commands parsing. Update: 08.07.2024 release date of the updates has been changed.
VDE-2023-005
June 25, 2023, 8:00 AM
An unauthenticated attacker with network access to port 502/TCP of the target device can cause a denial-of-service condition by sending multiple specially crafted packets. The MODBUS server does not properly …
VDE-2023-010
May 14, 2025, 3:00 PM
The FL MGUARD family of devices is affected by two vulnerabilities.
VDE-2023-002
May 14, 2025, 3:00 PM
Two vulnerabilites have been discovered in mbCONNECT24 and mbCONNECT24 in all versions through 2.13.3.
VDE-2023-008
May 15, 2023, 2:06 PM
Two vulnerabilites have been discovered in myREX24 and myREX24.virtual in all versions through 2.13.3.
VDE-2023-007
May 22, 2025, 3:03 PM
The 'legal information' plugin of web-based-management contained a vulnerability which allowed execution of arbitrary commands with privileges of www user. UPDATE A 15.06.2023 : Removed PFC100 with FW23 as affected …
VDE-2023-009
May 8, 2023, 3:37 PM
ads-tec: Multiple Vulnerabilities in IRF1000, IRF2000 and IRF3000
VDE-2023-004
April 11, 2023, 10:00 AM
A Directory Traversal Vulnerability enables arbitrary file access in ENERGY AXC PU Web service.An authenticated restricted user of the web frontend can access, read, write and create files throughout the …