VDE-2024-006
Jan. 23, 2024, 8:00 vorm.
Multiple vulnerabilities in the included versions of OpenSSL can lead to different problems, including crashes of the OpenSSL modules (leading to a Denial of Service) or leakage of plaintext. These …
VDE-2023-031
Nov. 13, 2023, 12:00 nachm.
The TRUMPF CAD/CAM software tools mentioned above use the vulnerable CodeMeter Runtime (up to version 7.60b) application from WIBU-SYSTEMS AG to manage licenses within the component TRUMPF License Expert. This …
VDE-2022-049
Mai 22, 2025, 3:03 nachm.
TruControl laser control software from versions 1.60.0 to 3.40.0 use a vulnerable X.Org server versions. The affected X.Org vulnerability is not validating the request length properly for the handler 'ProcXkbSetGeometry'. …
VDE-2022-023
Okt. 17, 2022, 12:00 nachm.
During the installation of specific TRUMPF Windows applications, privileged local users with default usernames and passwords are created. An adversary could use these users to access and compromise the affected …
VDE-2022-034
Aug. 15, 2022, 12:00 nachm.
A number of TRUMPF software tools use the OPC UA Server in C++ based OPC UA SDK by Unified Automation. The application contains several vulnerabilities, which enable an attacker to …
VDE-2022-016
Mai 2, 2022, 12:00 nachm.
A service function in the stated TRUMPF products is exposed without necessary authentication. Execution of this function may result in unauthorized access to, change of data or disruption of the …
VDE-2021-033
Aug. 12, 2021, 3:02 nachm.
VDE-2021-011
Feb. 2, 2026, 3:25 nachm.
TruControl laser control software from versions 2.14.0 to 3.14.0 use sudo versions affected by CVE-2021-3156. The affected sudo has a heap-based buffer overflow, allowing privilege escalation to root via "sudoedit …