VDE-2024-019
Mai 14, 2024, 8:00 vorm.
Multiple vulnerabilities have been discovered in the Firmware of CHARX SEC charge controllers. Update: credis have been updated
VDE-2024-028
Feb. 28, 2025, 12:00 nachm.
moneo \"Forgot Password\" function has a vulnerability which allows gaining privileged access.
VDE-2024-024
Mai 14, 2025, 3:00 nachm.
Local attackers can cause affected CODESYS Development System V2.3 installations to crash or execute code by opening malicious project files. The CODESYS Development System V2.3 is an IEC 61131-3 programming …
VDE-2024-023
April 23, 2024, 10:00 vorm.
Welotec has been informed by an external source that the WebUI of the device management solution "SMART EMS" and the remote connectivity solution "VPN Security Suite" is vulnerable to so-called …
VDE-2024-017
Mai 22, 2025, 3:03 nachm.
Critical vulnerabilities have been discovered in the product due to outdated software components.The impact of the vulnerabilities on the affected device may result in Denial of service Bypassing of authentication …
VDE-2024-009
Mai 14, 2025, 2:28 nachm.
Welotec has closed two vulnerabilities in the TK500v1 router series and advises to update the routers to firmware version r5542 or later. An exploitation of the vulnerabilities can allow an …
VDE-2023-039
März 13, 2024, 9:30 vorm.
The Web-Based Management (WBM) of WAGOs programmable logic controller (PLC) is typically used for administration, commissioning, and updates. The option to change the configuration data via tools or the web-based-management …
VDE-2024-011
März 12, 2024, 8:00 vorm.
Multiple vulnerabilities have been discovered in the Firmware of CHARX SEC charge controllers. These vulnerabilities were discovered as part of a PWN2OWN competition initiated by Trend Micro Zero Day Initiative …