VDE-2024-045
Mai 22, 2025, 3:03 nachm.
By default, TwinCAT/BSD-based products have a device-specific web interface for web-based management (WBM) enabled, developed by Beckhoff and known as Beckhoff Device Manager UI. It can be accessed remotely or …
VDE-2021-051
Mai 22, 2025, 3:03 nachm.
Through specific nodes of the server configuration interface of the TwinCAT OPC UA Server administrators are able to remotely create and delete any files on the system which the server …
VDE-2023-018
Mai 22, 2025, 3:03 nachm.
Multiple vulnerabilities allow an attacker to read arbitrary files, inject commands and bypass authentication or access control. Furthermore, hardcoded session and encryption keys as well as a missing firmware update …
VDE-2021-035
Mai 22, 2025, 3:03 nachm.
Access to the Apache web server being installed as part of the FL MGUARD DM on Microsoft Windows does not require login credentials even if configured during installation.
VDE-2020-017
Mai 22, 2025, 3:03 nachm.
PACTware passwords are stored in a recoverable format (CVE-2020-9403) PACTware passwords may be modified without knowing the current password (CVE-2020-9404)
VDE-2024-054
Mai 22, 2025, 3:03 nachm.
Several vulnerabilities have been identified in the web-based management of WAGO devices utilized in Endress+Hauser IoT solutions. WAGO has provided fixes for these vulnerabilities, which have been integrated into the …
VDE-2021-059
Mai 22, 2025, 3:03 nachm.
The TCP/IP stack and of the networking component (Nucleus NET) in Nucleus Real-Time Operating System (RTOS) contain several vulnerabilities. Nucleus NET is utilized by BLUEMARK X1 / LED / CLED. …
VDE-2023-026
Mai 22, 2025, 3:03 nachm.
Multiple WAGO devices are prone to vulnerabilites in the used CODESYS V3 framework.