VDE-2022-028
Mai 14, 2025, 3:00 nachm.
PHOENIX CONTACT: Missing Authentication in ProConOS/ProConOS eCLR SDK and MULTIPROG Engineering tool
ProConOS/ProConOS eCLR designed for use in closed industrial networks provide communication protocols without authentication. Please also refer the original ICS-CERT advisory ICSA-15-013-03 published 13 January 2015.
VDE-2022-026
Mai 22, 2025, 3:03 nachm.
ProConOS/ProConOS eCLR insufficiently verifies uploaded data.
VDE-2022-025
Mai 22, 2025, 3:03 nachm.
The affected devices insufficiently verify uploaded data.
VDE-2022-018
Mai 11, 2022, 4:20 nachm.
Multiple vulnerabilities have been discovered in the firmware and in libraries utilized of RAD-ISM-900-EN-BD devices: In addition to the above listed CVEs the following issues were identified: Vulnerabilities related to …
VDE-2022-014
Mai 22, 2025, 3:03 nachm.
Apache HTTP Server 2.4.52 and earlier fails to close inbound connection when errors are encountered discarding the request body, exposing the server to HTTP Request Smuggling. For the mGuard Device …
VDE-2022-013
Mai 14, 2025, 3:00 nachm.
FL MGUARD and TC MGUARD devices are affected by a possible infinite loop within a OpenSSL library method for parsing elliptic curve parameters. This method is used on parsing cryptographic …
VDE-2022-010
Mai 22, 2025, 3:03 nachm.
PLCnext Control AXC F x152 is certified according to IEC 62443-4-1 and IEC 62443-4-2. This certification requires that all third-party components used in the firmware are regularly checked for known …
VDE-2022-005
Mai 22, 2025, 3:03 nachm.
Several vulnerabilities have been discovered in the Expat XML parser library (aka libexpat).This open-source component is widely used in a lot of products worldwide.A remote, anonymous attacker could use an …