VDE-2025-089
Dec. 10, 2025, 8:00 AM
The BLE controller in certain consumer products fails to properly validate the channel map field in connection requests, enabling attackers within radio range to cause a denial of service through …
VDE-2025-071
Jan. 12, 2026, 9:00 AM
Multiple vulnerabilities have been identified in the FL SWITCH 2xxx firmware prior to version 3.50. Two of these (CVE-2025-41692 and CVE-2025-41696) enable an attacker to access the device's file system. …
VDE-2025-105
Dec. 8, 2025, 10:00 AM
A vulnerability in Wibu-Systems CodeMeter (up to version 7.60b) affects multiple Endress+Hauser products. This flaw can lead to a heap buffer overflow, which may allow remote code execution under certain …
VDE-2025-107
Dec. 5, 2025, 12:00 PM
Multiple vulnerabilities in a Qualcomm component have been reported in a closed-source report. This component is an integral part of the radio chip found in several Endress+Hauser products.
VDE-2025-099
Feb. 12, 2026, 12:00 PM
A vulnerability has been identified in the CODESYS Control runtime system, which includes an abstraction layer designed to ensure compatibility across different operating systems. This layer is used both by …
VDE-2025-101
Dec. 1, 2025, 11:00 AM
A vulnerability has been discovered in the print engine of the CODESYS development system. If a CODESYS project file or archive file was crafted in a specific way, the CODESYS …
VDE-2025-100
Feb. 12, 2026, 12:00 PM
A vulnerability in the CODESYS Control runtime system's CmpVisuServer component allows attackers to cause a denial-of-service (DoS) by sending special request to the CODESYS Web- or remote Target Visu. The …
VDE-2025-094
Nov. 24, 2025, 1:00 PM
A vulnerability in the devices UMG 96-PA and UMG 96-PA-MID+ enables an unauthenticated remote attacker to cause the device to become unavailable.