VDE-2023-062
Nov. 21, 2023, 9:15 vorm.
A heap-based buffer overflow caused by libcurl and wrong whitespace character interpretationin Javascript, both used in CodeMeter Runtime affecting multiple products by PHOENIX CONTACT.
VDE-2023-030
Nov. 13, 2023, 12:00 nachm.
A Vulnerability in WIBU-SYSTEMS CodeMeter Runtime affects multiple Phoenix Contact products. Phoenix Contact devices using CodeMeter embedded are not affected by this vulnerability. Update A, 2023-11-13 Removed CVE-2023-4701 because it …
VDE-2023-004
April 11, 2023, 10:00 vorm.
A Directory Traversal Vulnerability enables arbitrary file access in ENERGY AXC PU Web service.An authenticated restricted user of the web frontend can access, read, write and create files throughout the …
VDE-2022-018
Mai 11, 2022, 4:20 nachm.
Multiple vulnerabilities have been discovered in the firmware and in libraries utilized of RAD-ISM-900-EN-BD devices: In addition to the above listed CVEs the following issues were identified: Vulnerabilities related to …
VDE-2021-046
Nov. 10, 2021, 8:23 vorm.
Cross-site scripting in web-based management and memory leak in the remote logging function of FL MGUARD 1102 and FL MGUARD 1105. CVE-2021-34582: The file upload functionality in the web-based management …
VDE-2020-049
Dez. 17, 2020, 10:00 vorm.
Multiple vulnerabilities have been identified in PLCnext Control devices. Please consult the aforementioned CVE-IDs.
VDE-2020-030
Sept. 9, 2020, 8:22 vorm.
Several vulnerabilities have been discovered in WIBU-SYSTEMS CodeMeter and published 08 September 2020. Phoenix Contact is only affected by a subset of these vulnerabilities. Phoenix Contact products are not affected …
VDE-2020-018
Juni 2, 2020, 10:42 vorm.
FL MGUARD, TC MGUARD, TC ROUTER and TC CLOUD CLIENT devices are affected by a buffer overflow vulnerability within the PPP service. The PPP service is not active by default, …