VDE-2024-065
Mai 14, 2025, 2:28 nachm.
A vulnerability in the use of hard-coded Platform Keys (PK) within the UEFI framework, known as PKfail, has been discovered in several Pepperl+Fuchs devices.
VDE-2021-037
Mai 14, 2025, 2:28 nachm.
An issue was discovered in the mymbCONNECT24 and mbCONNECT24 software in all versions through V2.9.0.
VDE-2020-023
Mai 14, 2025, 2:28 nachm.
Manipulated PC Worx projects could lead to a remote code execution due to insufficient input data validation. The attacker needs to get access to an original PC Worx project to …
VDE-2019-007
Mai 14, 2025, 2:28 nachm.
A WebHMI utility may be exploited by any logged in user allowing the execution of arbitrary OS commands on the server. This provides the opportunity for a command injection attack.
VDE-2020-006
Mai 14, 2025, 2:28 nachm.
With special crafted requests it is possible to get sensitive information, in this case the password hashes, by measuring response delay. With a substantial amount of time this data can …
VDE-2021-021
Mai 14, 2025, 2:28 nachm.
An undocumented password protected FTP access to the root directory exists in certain devices of the AXL F BK and IL BK product families (CWE-798).
VDE-2024-044
Mai 14, 2025, 2:28 nachm.
Several Helmholz products are vulnerable to a possible race condition vulnerability in OpenSSH named "regreSSHion".
VDE-2021-002
Mai 14, 2025, 2:28 nachm.
A vulnerability has been discovered in the fdtCONTAINER component and application by M&M Software GmbH. As this software is part of the Weidmüller FDT/DTM Software with WI Manager, this Weidmueller …