Advisories | CERT@VDE

1
2 (current)

2024-08-13 14:00 VDE-2024-033

Pepperl+Fuchs: Device Master ICDM-RX/* – Vulnerability may allow attackers to interact with a user via dialog box

Vulnerabilities has been discovered in the product, mainly caused by HTML injection and crosssite-scripting.

The impact of the vulnerability on the affected device may result in an information disclosure and denial of service.

weiter ...

CVE-2024-38502: 7.1

CVE-2024-5849: 7.1

CVE-2024-38501: 6.1

1
2 (current)

Feeds

RSS / Atom

Nach Hersteller

ADS-TEC Industrial IT (2)

Auma (4)

Beckhoff (14)

Bender (2)

CODESYS (17)

Endress+Hauser (12)

Festo (12)

Festo Didactic (7)

Frauscher (3)

Carlo Gavazzi Controls (1)

Helmholz (12)

HIMA (2)

ifm (3)

Innominate (2)

Lenze (3)

MB connect line (12)

Miele (4)

M&M Software (1)

Pepperl+Fuchs (32)

PHOENIX CONTACT (91)

Pilz (13)

Red Lion Europe (4)

SMA (4)

SWARCO (1)

TECSON/GOK (1)

TRUMPF SE (4)

TRUMPF Laser (7)

TRUMPF Werkzeugmaschinen (8)

VARTA Storage (1)

VMT (1)

WAGO (62)

Weidmueller (12)

Welotec (3)

Wiesemann & Theis (3)

Legende

(Scoring für CVSS 2.0,3.0+3.1)

keine

Kein CVE verfügbar

Niedrig

0.1 <= 3.9

Mittel

4.0 <= 6.9

Hoch

7.0 <= 8.9

Kritisch

9.0 <= 10.0

Pepperl+Fuchs: Device Master ICDM-RX/* – Vulnerability may allow attackers to interact with a user via dialog box

Feeds

Nach Hersteller

Archiv

2025

2024

2023

2022

2021

2020

2019

2018

2017

Legende