VDE-2024-039
Aug. 27, 2025, 12:00 nachm.
Confidential data in HTTP query string of user requests. Incomplete sanitation of user input in administrative web interface.
VDE-2024-052
Mai 14, 2025, 3:00 nachm.
The pathfinder TCP encapsulation service is vulnerable to a drain of open file descriptors.
VDE-2024-022
Aug. 27, 2025, 12:00 nachm.
Start sequence for firewall service allows attack during the boot process. Password is reset to default when the device undergoes a firmware upgrade.
VDE-2024-029
Juni 11, 2024, 8:00 vorm.
The OpenSSL library used in the affected products is vulnerable to an unbounded growth of the session cache in the TLSv1.3 implementation.
VDE-2024-019
Mai 14, 2024, 8:00 vorm.
Multiple vulnerabilities have been discovered in the Firmware of CHARX SEC charge controllers. Update: credis have been updated
VDE-2024-011
März 12, 2024, 8:00 vorm.
Multiple vulnerabilities have been discovered in the Firmware of CHARX SEC charge controllers. These vulnerabilities were discovered as part of a PWN2OWN competition initiated by Trend Micro Zero Day Initiative …
VDE-2023-058
Mai 22, 2025, 3:03 nachm.
PLCnext Control provides authentication and integrity check for the application.An authenticated, skilled attacker might be able to manipulate the application (e.g.: logic files, executable logic, configurations) in a special crafted …
VDE-2023-056
Mai 22, 2025, 3:03 nachm.
PLCnext Control provides authentication and integrity check for the application.An authenticated, skilled attacker might be able to manipulate the application (e.g.: logic files, executable logic, configurations) in a special crafted …