Advisories

Show filters filter

Manufacturer

Scoring

For CVSS 2.0, 3.0 and 3.2

No CVE available

0.1 - 3.9

4 - 6.9

7 - 8.9

9 - 10

VDE-2025-069

July 31, 2025, 12:00 PM

Helmholz: Sandbox escape in REX200/250 LUA interpreter

An authenticated remote attacker can exploit an undocumented method to escape the LUA sandbox in REX200/250 devices, enabling the execution of arbitrary operating system commands and leading to full system …

CVE-2025-41688

VDE-2025-065

July 31, 2025, 12:00 PM

MB connect line: Sandbox escape in mbNET's LUA interpreter

An authenticated remote attacker can exploit an undocumented method to escape the LUA sandbox in mbNET devices, enabling the execution of arbitrary operating system commands and leading to full system …

CVE-2025-41688

VDE-2025-058

July 21, 2025, 12:00 PM

MB connect line: Multiple vulnerabilities in mbNET.mini

Multiple vulnerabilities in all mbNET.mini devices with firmware <= 2.3.2 that allow an attacker to gain full control over the device.

CVE-2025-41675

CVE-2025-41674

CVE-2025-41673

CVE-2025-41678

CVE-2025-41679

CVE-2025-41677

CVE-2025-41676

CVE-2025-41681

VDE-2025-059

July 21, 2025, 12:00 PM

Helmholz: Multiple vulnerabilities in REX 100

Multiple vulnerabilities in all REX 100 devices with firmware <= 2.3.2 that allow an attacker to gain full control over the device.

CVE-2025-41675

CVE-2025-41674

CVE-2025-41673

CVE-2025-41678

CVE-2025-41679

CVE-2025-41677

CVE-2025-41676

CVE-2025-41681

VDE-2025-053

July 8, 2025, 12:00 PM

Phoenix Contact: Multiple Vulnerabilities in PLCnext Firmware

Multiple Linux component vulnerabilities fixed in latest PLCnext Firmware release 2025.0.2

CVE-2024-12084

CVE-2024-10918

CVE-2024-52533

CVE-2025-0665

CVE-2024-38428

CVE-2024-5594

CVE-2024-5535

CVE-2024-6345

CVE-2025-24965

CVE-2024-9341

CVE-2018-1000035

CVE-2024-9287

CVE-2018-20969

CVE-2018-1000156

CVE-2019-13638

CVE-2024-12085

CVE-2024-6232

CVE-2018-6952

CVE-2018-6951

CVE-2024-6119

CVE-2024-25062

CVE-2025-27113

CVE-2024-8176

CVE-2024-12705

CVE-2025-26465

CVE-2024-10524

CVE-2024-12088

CVE-2024-12087

CVE-2024-9681

CVE-2024-12086

CVE-2019-13636

CVE-2025-26466

CVE-2024-50602

CVE-2024-12747

CVE-2018-18384

CVE-2022-0529

CVE-2022-0530

CVE-2019-20633

CVE-2024-0684

CVE-2023-27043

CVE-2024-12133

CVE-2020-16120

CVE-2024-5742

CVE-2024-8006

CVE-2023-7256

CVE-2024-28882

CVE-2024-9143

CVE-2016-9844

CVE-2024-11053

CVE-2025-0167

CVE-2019-13232

CVE-2021-4217

CVE-2015-7697

CVE-2015-7696

VDE-2025-014

July 8, 2025, 12:00 PM

Phoenix Contact: Security Advisory for CHARX SEC-3xxx charging controllers

Multiple vulnerabilities in the firmware of CHARX SEC-3xxx charging controllers have been discovered.

CVE-2025-24003

CVE-2025-24006

CVE-2025-24005

CVE-2025-24002

CVE-2025-24004

VDE-2025-019

July 22, 2025, 10:00 AM

Phoenix Contact: Security Advisory for CHARX SEC-3xxx charging controllers

Multiple vulnerabilities in the firmware of CHARX SEC-3xxx charging controllers have been discovered. **Update Version 1.1.0:** Updated the reporting credits for CVE-2025-25271.

CVE-2025-25270

CVE-2025-25271

CVE-2025-25268

CVE-2025-25269

VDE-2025-054

July 8, 2025, 12:00 PM

Phoenix Contact: Multiple Vulnerabilities in PLCnext Firmware

Multiple vulnerabilities in the PLCnext system allowed low-privileged remote attackers to gain unauthorized access or trigger system reboots by manipulating configuration files and symbolic links. Affected services include watchdog, arp-preinit, …

CVE-2025-41668

CVE-2025-41667

CVE-2025-41666

CVE-2025-41665