VDE-2020-025
Mai 14, 2025, 2:28 nachm.
The build settings of a PLCnext Engineer project (.pcwex) can be manipulated in a way that can result in the execution of remote code. The attacker needs to get access …
VDE-2020-023
Mai 14, 2025, 2:28 nachm.
Manipulated PC Worx projects could lead to a remote code execution due to insufficient input data validation. The attacker needs to get access to an original PC Worx project to …
VDE-2020-018
Juni 2, 2020, 10:42 vorm.
FL MGUARD, TC MGUARD, TC ROUTER and TC CLOUD CLIENT devices are affected by a buffer overflow vulnerability within the PPP service. The PPP service is not active by default, …
VDE-2020-013
März 27, 2020, 10:48 vorm.
If the software runs as a service, a user with limited access can gain administrator privileges by starting a shell with administrator rights from the Import / Export configuration dialog.
VDE-2020-012
Mai 22, 2025, 3:03 nachm.
The Phoenix Contact application 'PC WORX SRT' is installed as service. The installation path of the application is configured to have insecure permissions which allows any unprivileged user to write …
VDE-2020-003
Mai 14, 2025, 2:28 nachm.
Multiple Vulnerabilities exist in components used by the aforementioned products. See CVE-Details for more information.
VDE-2020-002
Juni 5, 2025, 3:28 nachm.
CVS-2019-12255 Wind River VxWorks has a Buffer Overflow in the TCP component (issue 1 of 4). This is an IPNET security vulnerability: TCP Urgent Pointer = 0 that leads to …
VDE-2020-001
Mai 22, 2025, 3:03 nachm.
Phoenix Contact Emalytics Controller ILC 2050 BI are developed and designed for the use in protected building automation networks.An issue was discovered on Phoenix Contact Emalytics Controller ILC 2050 BI …