VDE-2019-009
Mai 22, 2025, 3:03 nachm.
Multiple vulnerabilities have been identified in PHOENIX CONTACT AXC F 2152 with firmware versions 1.x
VDE-2021-052
Mai 22, 2025, 3:03 nachm.
PC Worx / -Express is vulnerable to a 'zip slip' style vulnerability when loading a project file.
VDE-2020-026
Mai 22, 2025, 3:03 nachm.
A timeout during a TLS handshake can result in the connection failing to terminate. This can result in a Niagara thread hanging and requires a manual restart to correct.
VDE-2022-051
Mai 22, 2025, 3:03 nachm.
A denial of service of the HTTPS management interface of PHOENIX CONTACT FL MGUARD and TC MGUARD devices can be triggered by a larger number of unauthenticated HTTPS connections originating …
VDE-2020-012
Mai 22, 2025, 3:03 nachm.
The Phoenix Contact application 'PC WORX SRT' is installed as service. The installation path of the application is configured to have insecure permissions which allows any unprivileged user to write …
VDE-2018-007
Mai 22, 2025, 3:03 nachm.
Phoenix Contact: FL SWITCH 3xxx/4xxx/48xx series - Stack-based Buffer Overflow in shared object file
An attacker may exploit a 'long cookie' related vulnerability to cause a buffer overflow that allows unauthorized access to the switches operating system files. The attacker can then insert executable …
VDE-2017-002
Mai 22, 2025, 3:03 nachm.
Multiple security issues and vulnerabilities in Oracle Java SE possibly affecting mGuard device manager (mdm / FL MGUARD DM) 1.8.0 and older.
VDE-2019-020
Mai 22, 2025, 3:03 nachm.
PHOENIX CONTACT: improper access control exists on FL NAT devices when using MAC-based port security
If MAC-based port security or 802.1x port security is enabled, the FL NAT 2xxx will unintentionally grant access to unauthorized devices in case of routed transmission. ''' Subnet 2---(Ports belonging …