VDE-2020-047
Mai 14, 2025, 2:28 nachm.
Uncontrolled Resource Consumption can be exploited to cause the HMI to become unresponsive and not accurately update the display content (Denial of Service).
VDE-2020-030
Sept. 9, 2020, 8:22 vorm.
Several vulnerabilities have been discovered in WIBU-SYSTEMS CodeMeter and published 08 September 2020. Phoenix Contact is only affected by a subset of these vulnerabilities. Phoenix Contact products are not affected …
VDE-2020-026
Mai 22, 2025, 3:03 nachm.
A timeout during a TLS handshake can result in the connection failing to terminate. This can result in a Niagara thread hanging and requires a manual restart to correct.
VDE-2020-025
Mai 14, 2025, 2:28 nachm.
The build settings of a PLCnext Engineer project (.pcwex) can be manipulated in a way that can result in the execution of remote code. The attacker needs to get access …
VDE-2020-023
Mai 14, 2025, 2:28 nachm.
Manipulated PC Worx projects could lead to a remote code execution due to insufficient input data validation. The attacker needs to get access to an original PC Worx project to …
VDE-2020-018
Juni 2, 2020, 10:42 vorm.
FL MGUARD, TC MGUARD, TC ROUTER and TC CLOUD CLIENT devices are affected by a buffer overflow vulnerability within the PPP service. The PPP service is not active by default, …
VDE-2020-013
März 27, 2020, 10:48 vorm.
If the software runs as a service, a user with limited access can gain administrator privileges by starting a shell with administrator rights from the Import / Export configuration dialog.
VDE-2020-012
Mai 22, 2025, 3:03 nachm.
The Phoenix Contact application 'PC WORX SRT' is installed as service. The installation path of the application is configured to have insecure permissions which allows any unprivileged user to write …