VDE-2025-043
Juni 25, 2025, 12:00 nachm.
A security vulnerability was discovered in the PLC Designer V4 in the version 4.0.0 where the programmer of a Controller can set a password for the connected device. Here it …
VDE-2025-042
Mai 27, 2025, 11:00 vorm.
The Lenze VPN client is vulnerable to a Local Privilege Escalation to root/SYSTEM by executing a configuration file which can be controlled by a non-privileged user. This occurs through a …
VDE-2024-053
März 13, 2025, 12:30 nachm.
The following tools: * VisiWinNET Smart * VisiWinNET Professional * EASY UI Designer create a directory with insufficient permissions, allowing a low-level user the ability to add and modify certain …
VDE-2022-030
Juli 11, 2022, 12:00 nachm.
The machine controller of the cabinet series include an OPC-UA server which uses an user management to authenticate clients via anonymous or user/password authentication. If the user/password authentication is selected, …
VDE-2021-048
Okt. 4, 2021, 2:33 nachm.
The affected products contain a CODESYS Control runtime system in version V2. They are therefore affected by the vulnerability described in CODESYS Advisory 2021-06. It provides a communication server for …