Advisories

Show filters filter

Manufacturer

Scoring

For CVSS 2.0, 3.0 and 3.2

No CVE available

0.1 - 3.9

4 - 6.9

7 - 8.9

9 - 10

VDE-2022-014

May 22, 2025, 3:03 PM

PHOENIX CONTACT: mGuard Device Manager affected by HTTP Request Smuggling of Apache Webserver

Apache HTTP Server 2.4.52 and earlier fails to close inbound connection when errors are encountered discarding the request body, exposing the server to HTTP Request Smuggling. For the mGuard Device …

CVE-2022-22720

VDE-2022-013

May 14, 2025, 3:00 PM

PHOENIX CONTACT: Multiple products affected by possible infinite loop within OpenSSL library

FL MGUARD and TC MGUARD devices are affected by a possible infinite loop within a OpenSSL library method for parsing elliptic curve parameters. This method is used on parsing cryptographic …

CVE-2022-0778

VDE-2022-010

May 22, 2025, 3:03 PM

PHOENIX CONTACT: Multiple Linux component vulnerabilities fixed in latest AXC F x152 LTS release

PLCnext Control AXC F x152 is certified according to IEC 62443-4-1 and IEC 62443-4-2. This certification requires that all third-party components used in the firmware are regularly checked for known …

CVE-2021-20232

CVE-2021-20231

CVE-2021-3711

CVE-2022-23852

CVE-2022-22822

CVE-2022-22823

CVE-2022-22824

CVE-2021-35942

CVE-2021-45079

CVE-2022-22827

CVE-2021-3518

CVE-2021-45960

CVE-2022-22825

CVE-2022-22826

CVE-2021-3517

CVE-2020-10878

CVE-2020-10543

CVE-2018-1000500

CVE-2019-17498

CVE-2020-6096

CVE-2021-20305

CVE-2020-8177

CVE-2021-46143

CVE-2019-18276

CVE-2021-23017

CVE-2021-21300

CVE-2021-22926

CVE-2020-8169

CVE-2021-22946

CVE-2019-20907

CVE-2021-43618

CVE-2020-12723

CVE-2020-24659

CVE-2021-40330

CVE-2021-3580

CVE-2021-41990

CVE-2022-23990

CVE-2020-15078

CVE-2021-3712

CVE-2021-42380

CVE-2021-42382

CVE-2021-42378

CVE-2021-42384

CVE-2021-42379

CVE-2021-42381

CVE-2021-42386

CVE-2021-42385

CVE-2021-22922

CVE-2019-20892

CVE-2021-45117

CVE-2021-22947

CVE-2021-3537

CVE-2021-22923

CVE-2021-22925

CVE-2021-22897

CVE-2016-20012

CVE-2021-42374

CVE-2020-29562

CVE-2021-20193

CVE-2021-22898

VDE-2022-008

April 7, 2022, 8:00 AM

WEIDMUELLER: Multiple vulnerabilities in Modbus TCP/RTU Gateways

Multiple issues have been found in the affected products. See CVE descriptions for details.

CVE-2019-9099

CVE-2019-9095

CVE-2019-9096

CVE-2019-9102

CVE-2019-9098

CVE-2019-9101

CVE-2019-9104

CVE-2019-9103

CVE-2019-9097

VDE-2022-009

May 22, 2025, 3:03 PM

WAGO: Multiple Products affected by Linux Kernel Vulnerability Dirty Pipe

The Linux kernel starting from 5.8 has a flaw which can lead to privilege escalation for a local user. The kernel is used in several Versions of the FW of …

CVE-2022-0847

VDE-2022-005

May 22, 2025, 3:03 PM

PHOENIX CONTACT: Vulnerabilities in XML parser library Expat (libexpat)

Several vulnerabilities have been discovered in the Expat XML parser library (aka libexpat).This open-source component is widely used in a lot of products worldwide.A remote, anonymous attacker could use an …

CVE-2022-23852

CVE-2022-22822

CVE-2022-22823

CVE-2022-22824

CVE-2022-25315

CVE-2022-25236

CVE-2022-25235

CVE-2022-22827

CVE-2021-45960

CVE-2022-22825

CVE-2022-22826

CVE-2021-46143

CVE-2022-23990

CVE-2022-25314

CVE-2022-25313

VDE-2022-006

March 24, 2022, 11:48 AM

Endress+Hauser: FieldPort SFP50 Memory Corruption in Bluetooth Controller Firmware

Possible memory corruption in BT controller when it receives an oversized LMP packet over 2-DH1 link and leads to denial of service.

CVE-2021-35093

VDE-2022-007

May 22, 2025, 3:03 PM

PHOENIX CONTACT: Path Traversal in Library of PLCnext Technology Toolchain and FL Network Manager

SharpZipLib (or #ziplib) is a Zip, GZip, Tar and BZip2 library. Prior to version 1.3.3, a TAR file entry ../evil.txt may be extracted in the parent directory of destFolder. This …

CVE-2021-32840

CVE-2021-32842